Bleeping Computer

GitLab warns of critical pipeline execution vulnerability

GitLab has released critical updates to address multiple vulnerabilities, the most severe of them (CVE-2024-6678) allowing an attacker to trigger pipelines as arbitrary users under certain conditions.
Dark Reading

GitLab Sends Users Scrambling Again With New CI/CD Pipeline Takeover Vuln

For the second time in less than a month GitLab has users scrambling to address a critical vulnerability in the community and enterprise editions of its DevOps ...
Bleeping Computer

GitLab: Critical bug lets attackers run pipelines as other users

GitLab warned today that a critical vulnerability in its product's GitLab Community and Enterprise editions allows attackers to run pipeline jobs as any other user. The GitLab DevSecOps platform has ...
Security Boulevard

Which Enterprise Automation Tools Integrate Best With CI/CD Pipelines?

Explore top enterprise automation tools that integrate seamlessly with CI/CD pipelines to improve workflow speed, testing, delivery, and team collaboration.
Dark Reading

Critical GitLab Bug Threatens Software Development Pipelines

A critical GitLab vulnerability could allow an attacker to run a pipeline as another user. GitLab is a popular Git repository, second only to GitHub, with millions of active users. This week, it ...
CRN

GitLab Introduces First Channel Program To Drive DevOps Alliances

The breakout startup is looking to ramp engagement with resellers, services providers and tech partners as enterprises rapidly adopt its comprehensive DevOps platform. GitLab rolled out its first ...