The Next Web

GitLab now automatically warns against merging API keys into your codebase

GitLab, the hugely popular devops platform, today announced the introduction of secrets detection with version 11.9 of the service. This means that should someone inadvertently include an API key or ...
腾讯网

GitLab高危漏洞可致实例崩溃(CVE-2025-10858 和 CVE-2025-8014)

GitLab 披露了多个高危拒绝服务(Denial-of-Service,DoS)漏洞,未经认证的攻击者可利用这些漏洞使自托管 GitLab 实例崩溃。这些漏洞影响 18.4.1、18.3.3 和 18.2.7 之前的社区版(Community Edition,CE)和企业版(Enterprise Edition,EE),攻击者可通过 HTTP 端点和 GraphQL API 发起 ...