American Fuzzy Lop on GitLab: Automating instrumented fuzzing using pipelines

Zero Trust at GitLab: Problems, goals, and coming challenges

What we learned by taking our bug bounty program public

Turning the Adobe CCF into the GitLab Control Framework (it’s all open source!)

Ask GitLab Security: Alexander Dietrich

Ask GitLab Security: Roger Ostrander

When technology outpaces security compliance

Ask GitLab Security: Paul Harrison

How GitLab went about choosing the right compliance framework

Inside the GitLab public bug bounty program

Agile iteration: My unique onboarding experience at GitLab

GitLab's security tools and the HIPAA risk analysis

Group Runner Registration Token Vulnerability

The evolution of Zero Trust

An update on project runner registration token exposed through issues quick actions vulnerability

A deep dive into the Security Analyst persona