Bleeping Computer

GitLab affected by GitHub-style CDN flaw allowing malware hosting

BleepingComputer recently reported how a GitHub flaw, or possibly a design decision, is being abused by threat actors to distribute malware using URLs associated with Microsoft repositories, making ...
InfoQ

GitLab Release Brings Protected Container Repositories; Fixes XSS Vulnerability

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Cory Benfield discusses the evolution of ...
The Hacker News

Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory Malware

While the Windows maker did not attribute the activity to a specific threat actor, the use of VS Code tasks and Vercel ...
クラウド Watch

GitLab、AI駆動機能「GitLab Duo Enterprise」を発表、GitLab 17.0をリリース

米GitLabは現地時間16日、Gitリポジトリマネージャー「GitLab」の最新メジャーバージョンとなる「GitLab 17.0」をリリースし、ソフトウェア開発を合理化するセキュアなAI駆動機能「GitLab Duo Enterprise」を発表した。 GitLab Duo Enterpriseは、GitLab Duo Proの開発者に ...
Bleeping Computer

GitLab patches high severity account takeover, missing auth issues

GitLab has released security updates to address multiple vulnerabilities in the company's DevSecOps platform, including ones enabling attackers to take over accounts and inject malicious jobs in ...