Bleeping Computer

GitLab patches high severity account takeover, missing auth issues

GitLab has released security updates to address multiple vulnerabilities in the company's DevSecOps platform, including ones enabling attackers to take over accounts and inject malicious jobs in ...
Bleeping Computer

GitLab warns of critical pipeline execution vulnerability

GitLab has released critical updates to address multiple vulnerabilities, the most severe of them (CVE-2024-6678) allowing an attacker to trigger pipelines as arbitrary users under certain conditions.
Ars Technica

Maximum-severity GitLab flaw allowing account hijacking under active exploitation

A maximum severity vulnerability that allows hackers to hijack GitLab accounts with no user interaction required is now under active exploitation, federal government ...
SiliconANGLE

GitLab issues soft guidance and its stock tanks after-hours

GitLab Inc. delivered strong fourth-quarter results today that easily topped analysts’ estimates, but its stock plunged in extended trading after the company offered soft guidance for the current ...
SiliconANGLE

GitLab’s revenue outlook comes up short and its stock gets hammered

Shares of the DevOps pioneer GitLab Inc. were battered and bruised in late trading today after it increased its full-year profit outlook but narrowly missed expectations on sales guidance. That came ...
Computer Weekly

GitLab delivers GitLab Duo Agent platform

The latest trends and issues around the use of open source software in the enterprise. The GitLab Duo Agent platform has reached general availability. This is an AI-native solution that embeds ...