Bleeping Computer

GitLab warns of critical pipeline execution vulnerability

GitLab has released critical updates to address multiple vulnerabilities, the most severe of them (CVE-2024-6678) allowing an attacker to trigger pipelines as arbitrary users under certain conditions.
The Security Ledger

Exposed Developer Secrets Surge: AI Drives 34% Increase in 2025

AI-driven development fueled a surge in developer secrets leaks last year, with nearly 29m credentials discovered on public GitHub repos.
NextBigFuture

Aembit Extends Secretless CI/CD with Credential Lifecycle Management for GitLab

Aembit, the workload identity and access management (IAM) company, today announced new capabilities for GitLab designed to reduce the security risks of long-lived personal access tokens (PATs) and ...
CSOonline

Cybercriminals intensify hunt for exposed Git secrets

About 4,800 unique IP addresses were scanned for exposed Git configuration files in a single day to steal sensitive secrets and tokens. Git configuration files exposed in public repositories are being ...