Dark Reading

GitLab Sends Users Scrambling Again With New CI/CD Pipeline Takeover Vuln

For the second time in less than a month GitLab has users scrambling to address a critical vulnerability in the community and enterprise editions of its DevOps ...
Arabian Post

GitLab rushes fixes for fresh flaws

Pan Asian Group, Office No. 535A, Al Ghurair Centre, Al Riqqa, Deira, Dubai, UAE ...
Bleeping Computer

GitLab warns of critical pipeline execution vulnerability

GitLab has released critical updates to address multiple vulnerabilities, the most severe of them (CVE-2024-6678) allowing an attacker to trigger pipelines as arbitrary users under certain conditions.
TechRepublic

Best CI/CD Pipeline Tools for DevOps

Software developers can leverage the power of continuous integration and continuous delivery/deployment (CI/CD) tools to automate the development lifecycle. Such automation allows them to increase ...
Bleeping Computer

CISA says GitLab account takeover bug is actively exploited in attacks

CISA warned today that attackers are actively exploiting a maximum-severity GitLab vulnerability that allows them to take over accounts via password resets. GitLab hosts sensitive data, including ...
TechRepublic

Jenkins vs GitLab: DevOps software comparison

With DevOps, the need to constantly develop, test and deploy new features is critical, and this requires specialized tools to help automate and streamline the process to make it seamless. Two popular ...