GitLab CI/CD Security
DevSecOps using GitLab Secure - Dev Genius
GitLab Secure. Secure provides Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Container Scanning, and ...
OWASP Top 10 CI/CD Security Risks
CI/CD environments, processes, and systems are the beating heart of any modern software organization. They deliver code from an engineer's workstation to ...
Qualys IaC Security Integration for GitLab
The security scans are conducted on cloud resources after deployment in the current continuous integration and continuous deployment (CICD) environment.
Static Application Security Testing (SAST) - 极狐GitLab
If you're using GitLab CI/CD, you can use Static Application Security Testing (SAST) to check your source code for known vulnerabilities.
Integrating with GitLab CI/CD - ARMO Platform
Use GitLab jobs to scan your YAML files for misconfigurations with Kubescape. Scan results are displayed in the jobs result log.
Run Security Scans (SAST) in Gitlab CI/CD Pipeline - YouTube
In this video I'll show you how to integrate security scanning into GitLab CI/CD Pipelines. We'll start with the default scanner and then ...
Using GitLab's Secure File in GitLab CI | by Ankit Kumar - Stackademic
Log in to your GitLab account and navigate to your project. · In the project menu, go to “Settings” and then select “CI/CD.” · Scroll down to the ...
Security Advisory: GitLab Malicious Runner Vulnerability - Cycode
This vulnerability is caused by a flaw in a GraphQL endpoint and can be exploited by any GitLab user account under certain conditions.
Vault CI/CD pipeline: secure your secrets
In Gitlab, variables are often used to manage secrets that need to be accessed by the CICD. As an example, consider two variables: ...
Integrating security into your DevOps Lifecycle | GitLab
Protect your workloads by setting up a secure CI/CD tunnel with your clusters, running dynamic application security scanning, operational container scanning, ...
GitLab CI: Feature Overview, Tutorial and Best Practice - Codefresh
GitLab CI/CD can help test all changes in a feature branch. It can check an application for various security vulnerabilities, such as unauthorized access, ...
Get started securing your application - GitLab Documentation
Integrate security testing into the software development lifecycle by ... yml file, so that the scans run as part of your project's CI/CD pipeline. As ...
New Critical GitLab Vulnerability Could Allow Arbitrary CI/CD ...
GitLab has released security updates for Community Edition (CE) and Enterprise Edition (EE) to address eight security flaws, ...
Integrating Invicti Enterprise with GitLab CI/CD
GitLab is a web-based Git repository manager that provides CI/CD pipeline features, enabling you to add CI configuration to your source control using just ...
Join our upcoming GitLab webinars: Code Security and CI/CD
GitLab provides a single application for the entire DevOps lifecycle, including version control that's tightly integrated with strong CI/CD .
GitLab CI: How to automate secure deploys with Syft & Grype
Thankfully, the automation capabilities of CI/CD pipelines can make this process seamless. In this article, we'll guide you through setting up a ...
Get started with GitLab application security - ETSI Forge
Recommended steps · Choose a project to enable and test security features. · Create a merge request to enable Secret Detection and enable Dependency Scanning to ...
DevSecOps with Gitlab CI Course - AppSecEngineer
Gitlab CI is one of the most popular open source tools for continuous integration and deployment (CI/CD), and is a highly effective way to introduce ...
A curated list of awesome CI CD security resources - GitHub
legitify - Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets. poutine - A security scanner that detects ...
GitLab Case Study - Aqua Security
Whether an organization is modernizing its SDLC or fully immersed in CI/CD methodologies, GitLab seeks to elevate the standard for secure DevOps without ...