News

Bleeping Computer8mon
GitLab warns of critical arbitrary branch pipeline execution flaw - BleepingComputer
GitLab addressed arbitrary pipeline execution vulnerabilities multiple times this year, including CVE-2024-6678 last month, CVE-2024-6385 in July, and CVE-2024-5655 in June, all rated critical.
heise online1mon
Cloud Native: Reusable CI/CD pipelines with GitLab
Before the two GitLab concepts, Job Templates and GitLab Components are used, a "naive" test and build pipeline will first illustrate the procedure. The Maven CLI tool with the command mvn test is ...
Bleeping Computer11mon
GitLab: Critical bug lets attackers run pipelines as other users - BleepingComputer
GitLab warned today that a critical vulnerability in its product's GitLab Community and Enterprise editions allows attackers to run pipeline jobs as any other user.