Search

about.gitlab.com › blog

Harden your pipeline perimeter for the era of AI-assisted coding

… You can't enforce what isn't automated Enforcement is the difference between a policy that exists and a policy that runs. …

May 13, 2026 · Vishal Thenge

about.gitlab.com › blog

5 ways to fix misleading vulnerability severities with policy

… Multiple rules within a policy = OR match any Limits 3 criteria per rule, 5 rules per policy, 5 policies per security policy project Scope Project-level or group-level. policy scope for compliance framework targeting Manual override precedence Manual overrides by authorized users always take preced… …

May 13, 2026 · Grant Hickman

about.gitlab.com › blog

A guide to the breaking changes in GitLab 18.0

… You can learn more about the high-impact changes occurring within each of these windows in this breaking changes documentation . Note: Breaking changes may fall slightly outside of these windows in exceptional circumstances. …

Apr 18, 2025 · Martin Brümmer

about.gitlab.com › blog

Agentic coding is only as good as its context

… The agent reads the feedback, makes requested changes, commits them, and lets CI/CD validate the result. The human reviewer still validates the outcome, approving or requesting further changes, making the final merge decision. …

May 28, 2026 · Jessica Taylor

about.gitlab.com › blog

A guide to the high-impact breaking changes in GitLab 17.0

Published on: April 10, 2024 5 min read A guide to the high-impact breaking changes in GitLab 17.0 Find, assess, and mitigate the impact of deprecations and breaking changes in this year’s major release. …

Apr 10, 2024 · Martin Brümmer

about.gitlab.com › blog

OWASP Top 10 2025: What's changed and why it matters

… Why these changes were made The OWASP methodology combines data-driven analysis with community insights. …

Jan 7, 2026 · Fernando Diaz

about.gitlab.com › blog

Reduce supply chain risk with SBOM-based dependency scanning

… By defining the requirement once at the group or instance level, the policy applies everywhere automatically. …

May 26, 2026 · Mark Settle

about.gitlab.com › blog

7 steps to enhance application security without slowing developer velocity

… This will ensure that developers are still getting fast feedback as they are working on code changes for new features and bug fixes. …

May 21, 2024 · Julie Byrne

about.gitlab.com › blog › gitlab-act-2

GitLab Act 2

… Where local requirements apply we will not make any changes until the local process is complete. Four operational changes are part of the workforce reduction. …

May 11, 2026 · Bill Staples

about.gitlab.com › blog

GitLab Dedicated for Government now GovRAMP-authorized

… By uniting security scanning, policy enforcement, and compliance management in a single platform, GitLab enables government organizations to ship secure software faster while maintaining the governance rigor their missions demand. …

May 18, 2026 · Elisabeth Burrows