IT之家 11 月 29 日消息，Truffle Security 安全工程师对 GitLab Cloud 上约 560 万个公共仓库进行扫描，发现其中包含 17,430 条有效密钥，涉及 2,804 个独立域名，涵盖云服务、数据库和各类 API 凭据等敏感信息。他也因此获得超 9000 美元（IT之家注：现汇率约合 63748 元人民币）的漏洞奖金。 该研究由安全工程师 Luke ...

Security engineer Luke Marshall analyzed more than 5.6 million public GitLab Cloud repositories for exposed secrets in a ...

GitLab, the hugely popular devops platform, today announced the introduction of secrets detection with version 11.9 of the service. This means that should someone inadvertently include an API key or ...

After scanning all 5.6 million public repositories on GitLab Cloud, a security engineer discovered more than 17,000 exposed ...

On GitLab Cloud there were 17,000 secrets exposed in public repositories, spread across 2,800 unique domains. On Bitbucket, ...

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Vivek Yadav, an engineering manager from ...

GitLab, a devops platform based on the Git software version control system, gains increased visibility into security with its Version 11.1 release, as well as other enhancements. The new security ...

GitLab has put the brakes on plans to introduce forced tracking by third-party telemetry services by changing its Terms of Service. GitLab is a DevOps platform ...

Exercise app tells spies to stop mapping; GitLab scan reveals 17,000 secrets; Leak exposes Iran’s Charming Kitten; and more!