GitLab Adds Security Dashboards
Written by Kay Ewbank Thursday, 26 July 2018The latest update for GitLab is designed to provide better security visibility, alongside contextual views, better code search, and improvements to the UX. GitLab is a web-based repository manager for Git that supports concurrent devops and issue-tracking.
The new security dashboard is the most visible change. It offers a higher level view of how all security issues are affecting a branch in aggregate, so that security teams can make decisions about the priority of issues so the most important vulnerabilities are tackled first. This information previously had to be collated from reports across Merge Requests. The dashboard can also be used to dismiss false positives.
The next change to GitLab is the addition of Static Application Security Testing (SAST) for Node.js. Until now, this was limited to C, C++, Go, Java and python. SAST can be used to see code vulnerabilities when changes are committed to a repository.
Code searching options are another area to have been improved, with improvements to the advanced search syntax so you can filter by filename, path, and extension. These filters are available in both the Web UI and in the API.
The merge request widget info and pipeline sections have been redesigned, so that they appear slightly away form the rest of the widget control. This is intended to make them easier to consume. The developers felt that while the merge request widget is powerful, the fact it shows you so much integrated and relevant information and functions meant some users weren't making best use of the information and pipeline sections.
More Information
GitLab 11.1 Release Notes
Related ArticlesGitLab Adds Auto DevOps
Microsoft Buys GitHub - Get Ready For a Bigger Devil
InkScape Moves To GitLab
GitHub Marketplace Now Accepts Free Apps and Offers Free Trials
GitHub Victim Of Its Own Success
Microsoft CodePlex Is Shutting Down
Microsoft Mass Migration To GitHub
GitHub Octoverse Reveals The State Of Open Source
To be informed about new articles on IProgrammer,sign up for ourweekly newsletter, subscribe to theRSSfeedandfollow us on, Twitter, Facebook , Google+ or Linkedin .
ONVIF Challenge Winners
12/07/2018
The results of the ONVIF Open Source Spotlight Challenge have been announced. The challenge site has details of all the submissions and if you are looking for interesting ways to use security cameras [...]+ Full Story
Oracle Launches Subscription Java SE Service
03/07/2018
Oracle has brought in a new subscription Java SE service for its enterprise Java users The new service is designed to provide enterprise management, monitoring, and deployment features as well a[...]+ Full Story
More News Guido van Rossum Quits As Python BDFL DevTube - A Curated Collection of Videos A New Type Of Drone dbForge Adds Support for mysql 8.0 Amazon Launches Alexa Skills Kit SDK for Python Hadoopi - Raspberry Pi Hadoop Cluster Sharpen Your Hacking Skills With CTFLearn Threat To Internet Staved Off Until September Excel Adds New Data Types Bing Adds Intelligent Code Search