GitLab Vulnerability, Secure by Design Pledge, & Near Miss Supply Chain Attack

Hello, this week Jordan_Zebor is your editor looking at the notable security news for a critical GitLab Vulnerability, the CISA Secure by Design Pledge & a near miss Supply Chain Attack. GitLab...

Published Jul 15, 2024

Version 1.0

SIRT

Joined May 16, 2019

View Profile

amolari

Cirrostratus

Jul 17, 2024

Thank you for this insightful information. About your sarcastic tag in the Gitlab chapter, if I switch mine, I still have in mind the horrible time we had not too long ago with all those critical CVE's about BIG-IP's management restAPI 😬

Hopefully those days won't come back because if they do, that could impact the reputation of wib and heyhack (now integrated into F5) products too. Well, hopefully they're used in the dev pipeline prior to build release...

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

GitLab Vulnerability, Secure by Design Pledge, & Near Miss Supply Chain Attack

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS