Electronic Design

GitLab’s DevSecOps Enhances Security for Software Developers

The DevSecOps system unifies CI/CD and built-in security scans in one platform so that teams can ship faster with fewer vulnerabilities.
Dark Reading

GitLab's AI Assistant Opened Devs to Code Theft

An indirect prompt injection flaw in GitLab's artificial intelligence (AI) assistant could have allowed attackers to steal source code, direct victims to malicious websites, and more. In fact, ...
InfoWorld

GitLab introduces AI agent-enabled devsecops platform

Moving forward on AI, GitLab is offering a public beta of GitLab Duo Agent Platform, a devsecops orchestration platform intended to unlock asynchronous collaboration between developers and AI agents.
Hosted on MSN

Hidden Prompts in GitLab Duo Expose Source Code to Theft

A critical vulnerability in GitLab’s AI-powered coding assistant, Duo, has exposed private source code repositories to theft through a sophisticated indirect prompt injection attack, cybersecurity ...
TechRepublic

GitLab Vulnerability ‘Highlights the Double-Edged Nature of AI Assistants’

GitLab Vulnerability ‘Highlights the Double-Edged Nature of AI Assistants’ Your email has been sent A remote prompt injection flaw in GitLab Duo allowed attackers to steal private source code and ...
Bleeping Computer

GitLab warns of critical arbitrary branch pipeline execution flaw

GitLab has released security updates to address multiple flaws in Community Edition (CE) and Enterprise Edition (EE), including a critical arbitrary branch pipeline execution flaw. The vulnerability, ...
Opinion
Database Trends and ApplicationsOpinion

Black Duck Delivers Frictionless DevSecOp with Expanded Polaris Integrations

Black Duck, a leader in AI-powered application security, is offering a powerful set of enhanced Black Duck Polaris Platform integrations across all major source code management (SCM) ...