Bleeping Computer

GitLab warns of critical arbitrary branch pipeline execution flaw

GitLab has released security updates to address multiple flaws in Community Edition (CE) and Enterprise Edition (EE), including a critical arbitrary branch pipeline execution flaw. The vulnerability, ...
Dark Reading

Hackers Create Legit Phishing Links With Ghost GitHub, GitLab Comments

Hackers are using unpublished GitHub and GitLab comments to generate phishing links that appear to come from legitimate open source software (OSS) projects. The clever trick, first described by Sergei ...
Dark Reading

Red Hat Investigates Widespread Breach of Private GitLab Repositories

Red Hat has confirmed a security incident that impacted its GitLab instance after a threat actor claimed to have breached tens of thousands of the Linux software-maker's private repositories. In an ...