Dark Reading

GitLab Sends Users Scrambling Again With New CI/CD Pipeline Takeover Vuln

For the second time in less than a month GitLab has users scrambling to address a critical vulnerability in the community and enterprise editions of its DevOps ...
InfoQ

Grafana and GitLab Introduce Serverless CI/CD Observability Integration

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
Bleeping Computer

GitLab warns of critical arbitrary branch pipeline execution flaw

GitLab has released security updates to address multiple flaws in Community Edition (CE) and Enterprise Edition (EE), including a critical arbitrary branch pipeline execution flaw. The vulnerability, ...
Computer Weekly

Changes in the CI/CD pipeline

A core advantage gained through continuous integration/continuous delivery (CI/CD) environments is the ability to garner immediate feedback from the user base. This ...
TechRepublic

Best CI/CD Pipeline Tools for DevOps in 2023

Software developers can leverage the power of continuous integration and continuous delivery/deployment (CI/CD) tools to automate the development lifecycle. Such automation allows them to increase ...
Bleeping Computer

GitLab: Critical bug lets attackers run pipelines as other users

GitLab warned today that a critical vulnerability in its product's GitLab Community and Enterprise editions allows attackers to run pipeline jobs as any other user. The GitLab DevSecOps platform has ...
InfoWorld

AI in CI/CD pipelines can be tricked into behaving badly

Malicious content in issues or pull requests can trick AI agents in CI/CD workflows into running privileged commands in an ...
TechRepublic

Bamboo CI/CD tool review

Bamboo is a Continuous Integration (CI), Continuous Deployment (CD), and release management tool from Atlassian. With it, software development teams can build, test, and deploy confidently. Is Bamboo ...