Petes Linkedin Blog

Today we are releasing version 15.9.3 for GitLab Community Edition and Enterprise Edition. This version resolves a number of regressions and bugs in this month's 15.9 release and prior versions. GitLab Community Edition and Enterprise Edition Removing markdown checklist task feature flag Add group merge checks settings document Fix object deletion not working with Azure Blob Storage Note that Kerberos headers are needed to build GitLab shell now Fix BackfillUserDetailsFields migration finalization Guard against dropped columns when finalizing user details migration Enable Geo::RepositoryRegistrySyncWorker on Geo secondary site Docs for marking a batched BG migration finished Fix foreign_key_exists? migration helper Important notes on upgrading This version does not include any new migrations, and for multi-node deployments, should not require any downtime . Please be aware that by default the Omnibus packages will stop, run migrations, and start again, no matter ho...

Innovation and growth can sometimes be at odds in the world of retail, especially when trying to develop, deploy, and manage modern applications across multicloud environments. GitLab and Google Cloud together help retailers create and secure software that scales along with their business. GitLab’s comprehensive DevSecOps Platform connects with Google Cloud’s Distributed Cloud Edge edge networking environment and Anthos cloud-centric container platform to provide retailers with enterprise-class features such as collaboration and planning, continuous integration ( CI ), configuration management, and built-in security and compliance. GitLab enables development teams to streamline management of their distributed, hybrid environments right out of the gate. Retailers can utilize the following capabilities: Agile planning and collaboration to ensure Anthos cloud container cluster configurations and policies are up to date and compliant with company standards. Continuous integration t...

Customizable roles have been on GitLab's roadmap for the past two years. When we began working on them a year ago, our team struggled to find the minimal viable change (MVC) that would benefit customers. At the same time, through different feedback channels, customers were telling us they wanted more from their Ultimate tier Guest user roles. There it was: our MVC! Here is what happened next. Our MVC journey When we began working on customizable roles, we knew that the six static, out-of-the-box roles that come with GitLab were not flexible enough to cover the use cases of our customers. Some roles were too permissive, while others didn’t grant the permissions necessary to accomplish a task. At a time when security and abiding by the principle of least privilege is more top of mind than ever, we needed to give our customers a way to define their own roles. The customer ask was clear, but the implementation path was not. Performance considerations were top of mind. Permission...

The 2023 National Cybersecurity Strategy , which the White House released last week, should serve as a wake-up call to all organizations that develop software, whether for internal or external use. The policy puts the liability for poor security on software makers and requires a strengthening of security at every step of the software development lifecycle. The policy shines a spotlight on the importance of collaboration, digital transformation, automation, and transparency. The White House is seeking to advance security-first posturing, eliminate the top cybersecurity threats, rebalance software security responsibility and data stewardship, defend against malicious actors, and forge international partnerships. “Companies that make software must have the freedom to innovate, but they must also be held liable when they fail to live up to the duty of care they owe consumers, businesses, or critical infrastructure providers. Responsibility must be placed on the stakeholders most capable ...

Today we are releasing versions 15.9.2, 15.8.4, and 15.7.8 for GitLab Community Edition (CE) and Enterprise Edition (EE). These versions contain important security fixes, and we strongly recommend that all GitLab installations be upgraded to one of these versions immediately. GitLab.com is already running the patched version. GitLab releases patches for vulnerabilities in dedicated security releases. There are two types of security releases: a monthly, scheduled security release, released a week after the feature release (which deploys on the 22nd of each month), and ad-hoc security releases for critical vulnerabilities. For more information, you can visit our security FAQ . You can see all of our regular and security release blog posts here . In addition, the issues detailing each vulnerability are made public on our issue tracker 30 days after the release in which they were patched. We are dedicated to ensuring all aspects of GitLab that are exposed to customers or that host cust...

Effective April 3, 2023, GitLab is increasing the list price of GitLab Premium from $19 to $29 per user per month. Existing GitLab Premium customers will have a one-time transition price of $24 per user per month automatically applied to their upcoming renewals until April 2, 2024. As GitLab’s first price increase in more than five years, this new pricing for GitLab Premium reflects the evolution of GitLab from source control and CI to the most comprehensive DevSecOps Platform . Over the past five years, GitLab Premium added more than 400 features , leading to improved cycle times , enhanced developer experience , and better collaboration for our customers. GitLab Premium evolution and benefits Since February 2018, we expanded GitLab Premium to include more than 400 features across the entire software delivery lifecycle so customers can focus on delivering high-quality software faster. We’ve added notable capabilities including: Ease of getting started : Built-in templates and ...

Amazon S3 has a Static Website Hosting feature which allows you to host a static website directly from an S3 bucket. When you host your website on S3, your website content is stored in the S3 bucket and served directly to your users, without the need for additional resources. Combine this with Amazon CloudFront and you will have a cost-effective and scalable solution for hosting static websites – making it a popular choice for single-page applications. In this post, I will walk you through setting up your Amazon S3 bucket, setting up OpenID Connect ( OIDC ) in AWS, and deploying your application to your Amazon S3 bucket using a GitLab CI/CD pipeline. By the end of this post, you will have a CI/CD pipeline built in GitLab that automatically deploys to your Amazon S3 bucket. Let's dive in. Prerequisites For this guide you will need the following: Node.js >= 14.0.0 and npm >= 5.6 installed on your system Git installed on your system A GitLab account An AWS account...

GitLab is committed to supporting the startup community, and we are excited to announce the expansion of our GitLab for Startups program . Our goal has always been to help businesses of all sizes streamline their development processes and improve collaboration, and we recognize the unique challenges that startups face.  Starting on March 15, 2023, our GitLab for Startups program will include qualifying startups backed by external funding. Based on funding level and years in the program, qualifying startups are able to utilize our complete DevSecOps platform at a highly discounted price or possibly at no cost for the first year. The program will continue supporting eligible startups with deep discounts in the second year.   With GitLab, startups are able to reduce software development cycles, reduce time to market, and improve product quality. By adopting a single application for the entire DevSecOps lifecycle, startups can develop software faster and focus more on growi...

Securing CI/CD workflows can be challenging. This blog post walks you through the problem validation, explores the JWT token technology and how it can be used with OIDC authentication, and discusses implementation challenges with authorization realms. You will learn about the current possibilities and future plans with GitLab 16.0. Variables vs. secrets Variables are an efficient way to control and inject parameters into your jobs and pipelines, making managing and configuring the CI/CD workflows easier. You can read more about how to use CI/CD variables . An extra layer of security on top of variables to mask and protect, for now, is our “best-effort” to prevent sensitive variables from being accidentally revealed. However, variables are not a drop-in replacement for secrets. Securing secrets natively is a solution that GitLab aspires to provide. Meanwhile, we recommend storing sensitive information in a dedicated secrets management solution. As a company, we will provide you abili...

Today we are releasing version 15.9.1 for GitLab Community Edition and Enterprise Edition. This version resolves a number of regressions and bugs in this month's 15.9 release and prior versions. GitLab Community Edition and Enterprise Edition Resolve "Deprecate legacy praefect config structure in Omnibus" Fix dependency check in license approval policies Fix LDAP config sync_name problem Document rate limit for Direct transfer Missaligned ref-selector dropdown button on search page status bar Fix Broadcast messages not showing in admin console Bump omniauth_openid_connect to v0.6.1 Important notes on upgrading This version does not include any new migrations, and for multi-node deployments, should not require any downtime . Please be aware that by default the Omnibus packages will stop, run migrations, and start again, no matter how “big” or “small” the upgrade is. This behavior can be changed by adding a /etc/gitlab/skip-auto-reconfigure file, which is ...

By following the DevSecOps principles, companies can ensure their applications are safe from malicious actors while delivering value quickly and efficiently. In this article, we'll take an in-depth look at DevSecOps principles and how they can help organizations stay ahead of the curve in terms of security. Let’s dive in. What is DevSecOps? DevSecOps is an approach to software development that combines the three principles of development, security, and operations. It enables teams to create a secure and reliable product while delivering value quickly and efficiently. The successful execution of DevSecOps involves continuous integration, automation, and testing with the goal of accelerating time-to-market without sacrificing quality or security. DevSecOps principles: An overview DevSecOps principles enable a development team to build secure and dependable applications at speed through the execution of ingrained security testing. By executing a DevSecOps approach, teams integra...

Machine learning can be a powerful tool in software development, but not if it has to live apart from existing engineering workflows. DevSecOps teams, including MLOps, can now integrate OctoML CLI into GitLab’s CI/CD Pipelines to unify workflows and leverage existing deployment and monitoring infrastructure. This integration makes it easier to catch bugs and model performance degradations early in the ML development cycle.  The OctoML Platform is a machine learning model optimization and deployment service powered by octoml.ai. Machine learning has grown in popularity in DevSecOps, along with AI, because of its ability to learn and model how to perform complex tasks as a human would and then automate those tasks. How does CI/CD apply to machine learning? Once a machine learning model has been successfully deployed, it can get stale over time and its accuracy could degrade, a situation called “data drift”. Data drift causes newer inferencing data to drift away from the data us...

Today, we are excited to announce the release of GitLab 15.9 with guest roles viewing private repositories , license approval policies and license compliance scanner , notifications in the GitLab for Slack app , code suggestions in closed beta and much more! These are just a few highlights from the 105+ improvements in this release. Read on to check out all of the great updates below. We thank the wider GitLab community for the 410+ contributions they provided to GitLab 15.9! At GitLab, everyone can contribute and we couldn't have done it without you! To preview what's coming in next month’s release, check out our Upcoming Releases page , which includes our 15.10 release kickoff video. MVP This month's Most Valuable Person ( MVP ) is Kyle Edwards Kyle Edwards contributed the ability to set custom text in a user deactivation email . This feature allows customers to specify why a user account was deactivated, and what steps to take for reactivating it. Kyle was pr...