To search repositories and projects, login to gitlab.com.
Suggestions
GitLab Duo Agent PlatformCode Suggestions (AI)CI/CDGitLab on AWSGitLab on Google CloudWhy GitLab?
  • Platform
    The intelligent orchestration platform for DevSecOps
    Explore our Platform
    GitLab Duo Agent Platform
    Agentic AI for the entire software lifecycle
    Meet GitLab Duo
    Why GitLab
    See the top reasons enterprises choose GitLab
    Learn more

    • Automation

    • CI/CD
    • GitLab Duo Agent Platform
    • Source Code Management
    • Automated Software Delivery

      Security

    • Application Security Testing
    • Software Supply Chain Security
    • Software Compliance

      Measurement

    • Visibility & Measurement
    • Value Stream Management
    • Analytics & Insights
    View all Solutions

      GitLab for

    • Enterprise
    • Small Business
    • Public Sector
  • Pricing

    • Getting started

    • Install
    • Quick start guides
    • Learn
    • Product documentation
    • Best practice videos
    • Integrations

      Discover

    • Customer success stories
    • Blog
    • The Source
    • Remote

      Connect

    • GitLab Services
    • Community
    • Forum
    • Events
    • Partners
    View all resources
    What’s new in GitLab

    Stay updated with our latest features and improvements.

    Read the latest

    • About
    • Jobs
    • Events
    • Leadership
    • Team
    • Handbook
    • Investor relations
    • Trust Center
    • AI Transparency Center
    • Newsletter
    • Press

    • Talk to sales
    • Support portal
    • Customer portal
Talk to salesGet free trialSign in
Get free trial
See how agentic AI transforms software delivery
Blog
security research
3

Browse articles that include the security research tag

Recent posts

Security

How we manage open source security software

Open source software presents unique security challenges. Here’s what you need to know.

Security

Top 6 security trends in GitLab-hosted projects

Using components with known vulnerabilities is the most common security problem in GitLab.com-hosted projects.

Security

How to exploit parser differentials

Your guide to abusing 'language barriers' between web components.

Security

Tutorial on privilege escalation and post exploitation tactics in Google Cloud Platform environments

A Red Team exercise on exploiting design decisions on GCP.

Security

Introducing Token-Hunter

Our red team has created a new tool to find sensitive data in the vast, wide-open.

Security

Shopping for an admin account via path traversal

How to exploit a path traversal issue to gain an admin account

Pagination

  • Previous
  • 1
  • 2
  • 3

Stay in the know with GitLab's monthly newsletter

All fields required

Ready to get started?

See what your team could do with a unified DevSecOps Platform

Get free trial

Find out which plan works best for your team

Learn about pricing

Learn about what GitLab can do for your team

Talk to an expert
®

Footer links

Pricing

  • View plans
  • Why Premium?
  • Why Ultimate?

Contact Us

  • Contact sales
  • Support portal
  • Customer portal
  • Status
  • Terms of use
  • Privacy statement

Product

  • DevSecOps platform
  • AI-Assisted Development

Topics

  • CICD
  • GitOps
  • DevOps
  • Version Control
  • DevSecOps
  • Cloud Native
  • AI for Coding
  • Agentic AI

Solutions

  • Application Security Testing
  • Automated software delivery
  • Agile development
  • SCM
  • CICD
  • Value stream management
  • GitOps
  • Enterprise
  • Small business
  • Public sector
  • Education
  • Financial services

Resources

  • Install
  • Quick start guides
  • Learn
  • Product documentation
  • Blog
  • Customer success stories
  • Remote
  • GitLab Services
  • Community
  • Forum
  • Events
  • Partners

Company

  • About
  • Jobs
  • Leadership
  • Team
  • Handbook
  • Investor relations
  • Sustainability
  • Diversity, inclusion and belonging (DIB)
  • Trust Center
  • Newsletter
  • Press
  • Modern Slavery Transparency Statement

Git is a trademark of Software Freedom Conservancy and our use of 'GitLab' is under license

View page sourceEdit this pagePlease contribute

© 2026 GitLab Inc.