<!doctype html> <html data-n-head-ssr lang="en-us" data-n-head="%7B%22lang%22:%7B%22ssr%22:%22en-us%22%7D%7D"> <head> <meta data-n-head="ssr" charset="utf-8"><meta data-n-head="ssr" name="viewport" content="width=device-width,initial-scale=1"><meta data-n-head="ssr" data-hid="contentSecurityPolicy" http-equiv="Content-Security-Policy" content=" default-src 'self' https: http:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: http: *.googletagmanager.com *.mutinycdn.com; style-src 'self' 'unsafe-inline' https: http: https://fonts.googleapis.com; object-src https: http:; base-uri 'self'; connect-src 'self' https: http: wss: ws: *.google-analytics.com *.analytics.google.com *.googletagmanager.com *.mutinyhq.com *.mutinyhq.io *.mutinycdn.com; frame-src 'self' https: http:; img-src 'self' https: http: data: *.google-analytics.com *.googletagmanager.com *.mutinycdn.com; manifest-src 'self'; media-src 'self' https: http:; child-src 'self' blob: https: http:; font-src 'self' https: http: data: https://fonts.gstatic.com; "><meta data-n-head="ssr" data-hid="formatDetection" name="format-detection" content="telephone=no"><meta data-n-head="ssr" data-hid="msapplication-TileImage" name="msapplication-TileImage" content="/nuxt-images/ico/mstile-144x144.png?cache=20220414"><meta data-n-head="ssr" data-hid="msapplication-config" name="msapplication-config" content="/nuxt-images/ico/browserconfig.xml"><meta data-n-head="ssr" data-hid="robots" name="robots" content="index, follow"><meta data-n-head="ssr" data-hid="description" name="description" content="GitLab application security testing for SAST, DAST, Dependency scanning, Container Scanning and more within the DevSecOps CI pipeline with vulnerability management and compliance."><meta data-n-head="ssr" data-hid="twitter:description" name="twitter:description" content="GitLab application security testing for SAST, DAST, Dependency scanning, Container Scanning and more within the DevSecOps CI pipeline with vulnerability management and compliance."><meta data-n-head="ssr" data-hid="og:description" property="og:description" content="GitLab application security testing for SAST, DAST, Dependency scanning, Container Scanning and more within the DevSecOps CI pipeline with vulnerability management and compliance."><meta data-n-head="ssr" data-hid="og:title" property="og:title" content="Security Compliance"><meta data-n-head="ssr" data-hid="twitter:creator" name="twitter:creator" content="@Gitlab"><meta data-n-head="ssr" data-hid="twitter:site" name="twitter:site" content="@Gitlab"><meta data-n-head="ssr" data-hid="twitter:card" name="twitter:card" content="summary_large_image"><meta data-n-head="ssr" data-hid="twitter:image:alt" name="twitter:image:alt" content="undefined"><meta data-n-head="ssr" data-hid="og:image:alt" property="og:image:alt" content="undefined"><meta data-n-head="ssr" data-hid="og:url" name="og:url" content="https://about.gitlab.com/solutions/security-compliance"><meta data-n-head="ssr" data-hid="og:type" property="og:type" content="article"><meta data-n-head="ssr" data-hid="twitter:title" name="twitter:title" content="Security Compliance"><meta data-n-head="ssr" data-hid="twitter:image" name="twitter:image" content="https://about.gitlab.com/nuxt-images/open-graph/open-graph-gitlab.png"><meta data-n-head="ssr" data-hid="og:image" property="og:image" content="https://about.gitlab.com/nuxt-images/open-graph/open-graph-gitlab.png"><title>Security Compliance | GitLab</title><link data-n-head="ssr" rel="shortcut icon" type="image/x-icon" href="/nuxt-images/ico/favicon.ico?cache=20220414"><link data-n-head="ssr" rel="icon" type="image/png" sizes="192x192" href="/nuxt-images/ico/favicon-192x192.png?cache=2022041"><link data-n-head="ssr" rel="icon" type="image/png" sizes="160x160" href="/nuxt-images/ico/favicon-160x160.png?cache=2022041"><link data-n-head="ssr" rel="icon" type="image/png" sizes="96x96" href="/nuxt-images/ico/favicon-96x96.png?cache=2022041"><link data-n-head="ssr" rel="icon" type="image/png" sizes="32x32" href="/nuxt-images/ico/favicon-32x32.png?cache=2022041"><link data-n-head="ssr" rel="icon" type="image/png" sizes="16x16" href="/nuxt-images/ico/favicon-16x16.png?cache=2022041"><link data-n-head="ssr" rel="apple-touch-icon" sizes="57x57" href="/nuxt-images/ico/apple-touch-icon-57x57.png?cache=2022041"><link data-n-head="ssr" rel="apple-touch-icon" sizes="60x60" href="/nuxt-images/ico/apple-touch-icon-60x60.png?cache=2022041"><link data-n-head="ssr" rel="apple-touch-icon" sizes="72x72" href="/nuxt-images/ico/apple-touch-icon-72x72.png?cache=2022041"><link data-n-head="ssr" rel="apple-touch-icon" sizes="76x76" href="/nuxt-images/ico/apple-touch-icon-76x76.png?cache=2022041"><link data-n-head="ssr" rel="apple-touch-icon" sizes="114x114" href="/nuxt-images/ico/apple-touch-icon-114x114.png?cache=2022041"><link data-n-head="ssr" rel="apple-touch-icon" sizes="120x120" href="/nuxt-images/ico/apple-touch-icon-120x120.png?cache=2022041"><link data-n-head="ssr" rel="apple-touch-icon" sizes="144x144" href="/nuxt-images/ico/apple-touch-icon-144x144.png?cache=2022041"><link data-n-head="ssr" rel="apple-touch-icon" sizes="152x152" href="/nuxt-images/ico/apple-touch-icon-152x152.png?cache=2022041"><link data-n-head="ssr" rel="apple-touch-icon" sizes="180x180" href="/nuxt-images/ico/apple-touch-icon-180x180.png?cache=2022041"><link data-n-head="ssr" rel="alternate" type="application/atom+xml" title="Blog" href="/atom.xml"><link data-n-head="ssr" rel="alternate" type="application/atom+xml" title="All Releases" href="/all-releases.xml"><link data-n-head="ssr" rel="alternate" type="application/atom+xml" title="Security Releases" href="/security-releases.xml"><link data-n-head="ssr" rel="alternate" type="application/atom+xml" title="Major Releases" href="/releases.xml"><link data-n-head="ssr" data-hid="i18n-alt-de" rel="alternate" href="https://about.gitlab.com/de-de/solutions/security-compliance/" hreflang="de"><link data-n-head="ssr" data-hid="i18n-alt-de-DE" rel="alternate" href="https://about.gitlab.com/de-de/solutions/security-compliance/" hreflang="de-de"><link data-n-head="ssr" data-hid="i18n-alt-fr" rel="alternate" href="https://about.gitlab.com/fr-fr/solutions/security-compliance/" hreflang="fr"><link data-n-head="ssr" data-hid="i18n-alt-fr-FR" rel="alternate" href="https://about.gitlab.com/fr-fr/solutions/security-compliance/" hreflang="fr-fr"><link data-n-head="ssr" data-hid="i18n-alt-ja" rel="alternate" href="https://about.gitlab.com/ja-jp/solutions/security-compliance/" hreflang="ja"><link data-n-head="ssr" data-hid="i18n-alt-ja-JP" rel="alternate" href="https://about.gitlab.com/ja-jp/solutions/security-compliance/" hreflang="ja-jp"><link data-n-head="ssr" data-hid="i18n-alt-it" rel="alternate" href="https://about.gitlab.com/it-it/solutions/security-compliance/" hreflang="it"><link data-n-head="ssr" data-hid="i18n-alt-it-it" rel="alternate" href="https://about.gitlab.com/it-it/solutions/security-compliance/" hreflang="it-it"><link data-n-head="ssr" data-hid="i18n-alt-pt" rel="alternate" href="https://about.gitlab.com/pt-br/solutions/security-compliance/" hreflang="pt"><link data-n-head="ssr" data-hid="i18n-alt-pt-br" rel="alternate" href="https://about.gitlab.com/pt-br/solutions/security-compliance/" hreflang="pt-br"><link data-n-head="ssr" data-hid="i18n-alt-es" rel="alternate" href="https://about.gitlab.com/es/solutions/security-compliance/" hreflang="es"><link data-n-head="ssr" data-hid="i18n-xd" rel="alternate" href="https://about.gitlab.com/solutions/security-compliance/" hreflang="x-default"><link data-n-head="ssr" rel="canonical" href="https://about.gitlab.com/solutions/security-compliance/"><link data-n-head="ssr" rel="preload" as="image" href="/_nuxt/image/eecfc0.svg"><link data-n-head="ssr" rel="preload" as="image" href="/_nuxt/image/c843cb.svg"><script data-n-head="ssr" data-hid="oneTrustSDK" src="https://cdn.cookielaw.org/scripttemplates/otSDKStub.js" type="text/javascript" charset="utf-8" data-domain-script="7f944245-c5cd-4eed-a90e-dd955adfdd08" defer></script><script data-n-head="ssr" src="https://cdn.cookielaw.org/consent/7f944245-c5cd-4eed-a90e-dd955adfdd08.js" type="text/javascript" charset="UTF-8" defer></script><script data-n-head="ssr" data-hid="oneTrustAutoBlocking" src="https://cdn.cookielaw.org/consent/7f944245-c5cd-4eed-a90e-dd955adfdd08/OtAutoBlock.js" type="text/javascript" defer></script><script data-n-head="ssr" data-hid="oneTrustGeolocation" src="https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location/geofeed" type="text/javascript" defer></script><script data-n-head="ssr" data-hid="mutiny">!function(){var i,n,c=window.mutiny=window.mutiny||{};window.mutiny.client||(c.client={_queue:{}},i=["identify","trackConversion"],n=[].concat(i,["defaultOptOut","optOut","optIn"]),n.forEach(function(n){var u;c.client[n]=(u=n,function(){for(var n=arguments.length,t=new Array(n),e=0;e<n;e++)t[e]=arguments[e];if(c.client._queue[u]=c.client._queue[u]||[],i.includes(u))return new Promise(function(n,e){c.client._queue[u].push({args:t,resolve:n,reject:e})});c.client._queue[u].push({args:t})})}))}()</script><script data-n-head="ssr" data-hid="mutiny-script" src="https://client-registry.mutinycdn.com/personalize/client/c18972324098ea25.js" data-cfasync="false"></script><script data-n-head="ssr" data-hid="gtagConsent" defer>function gtag(){dataLayer.push(arguments)}window.dataLayer=window.dataLayer||[];const defaultConsents=window.dataLayer.filter(t=>t.length&&0<=Array.from(t).indexOf("default"));defaultConsents.length<=2&&(gtag("consent","default",{analytics_storage:"granted",ad_storage:"granted",functionality_storage:"granted",wait_for_update:500}),gtag("consent","default",{analytics_storage:"denied",ad_storage:"denied",functionality_storage:"denied",region:["AT","BE","BG","HR","CY","CZ","DK","EE","FI","FR","DE","GR","HU","IE","IT","LV","LT","LU","MT","NL","PL","PT","RO","SK","SI","ES","SE","IS","LI","NO","RU","GB","PE","CO","KR","CA-QC"],wait_for_update:500})),window.geofeed=t=>{dataLayer.push({event:"OneTrustCountryLoad",oneTrustCountryId:t.country.toString(),oneTrustStateId:t.state?.toString()})}</script><script data-n-head="ssr" data-hid="bizible" src="//cdn.bizible.com/scripts/bizible.js" defer type="text/javascript"></script><script data-n-head="ssr" data-hid="munchkin" src="//munchkin.marketo.net/munchkin.js" defer type="text/javascript"></script><script data-n-head="ssr" src="https://extend.vimeocdn.com/ga/115027220.js" defer type="text/javascript"></script><script data-n-head="ssr" data-hid="schemaOrg" type="application/ld+json">{"@context":"https://schema.org","@type":"Corporation","name":"GitLab","legalName":"GitLab Inc.","tickerSymbol":"GTLB","url":"https://about.gitlab.com","logo":"https://gitlab.com/gitlab-com/gitlab-artwork/raw/master/logo/logo.png","description":"GitLab application security testing for SAST, DAST, Dependency scanning, Container Scanning and more within the DevSecOps CI pipeline with vulnerability management and compliance.","foundingDate":"2011","founders":[{"@type":"Person","name":"Sid Sijbrandij"},{"@type":"Person","name":"Dmitriy Zaporozhets"}],"slogan":"Our mission is to change all creative work from read-only to read-write so that everyone can contribute.","address":{"@type":"PostalAddress","streetAddress":"268 Bush Street #350","addressLocality":"San Francisco","addressRegion":"CA","postalCode":"94104","addressCountry":"USA"},"awards":"Comparably's Best Engineering Team 2021, 2021 Gartner Magic Quadrant for Application Security Testing - Challenger, DevOps Dozen award for the Best DevOps Solution Provider for 2019, 451 Firestarter Award from 451 Research","knowsAbout":[{"@type":"Thing","name":"DevOps"},{"@type":"Thing","name":"CI/CD"},{"@type":"Thing","name":"DevSecOps"},{"@type":"Thing","name":"GitOps"},{"@type":"Thing","name":"DevOps Platform"}],"sameAs":["https://www.facebook.com/gitlab","https://twitter.com/gitlab","https://www.linkedin.com/company/gitlab-com","https://www.youtube.com/channel/UCnMGQ8QHMAnVIsI3xJrihhg"]}</script><link rel="preload" href="/_nuxt/a5e5ed7.js" as="script"><link rel="preload" href="/_nuxt/41dd6a4.js" as="script"><link rel="preload" href="/_nuxt/css/fd182ce.css" as="style"><link rel="preload" href="/_nuxt/5a8cdbe.js" as="script"><link rel="preload" href="/_nuxt/css/4fb7a35.css" as="style"><link rel="preload" href="/_nuxt/52a471a.js" as="script"><link rel="stylesheet" href="/_nuxt/css/fd182ce.css"><link rel="stylesheet" href="/_nuxt/css/4fb7a35.css"><link rel="preload" href="/_nuxt/static/1732377904/solutions/security-compliance/state.js" as="script"><link rel="preload" href="/_nuxt/static/1732377904/solutions/security-compliance/payload.js" as="script"><link rel="preload" href="/_nuxt/static/1732377904/manifest.js" as="script"> </head> <body> <div data-server-rendered="true" id="__nuxt"><!----><div id="__layout"><div data-fetch-key="data-v-697d4b95:0" data-v-697d4b95><a href="/gitlab-duo/" data-ga-name="gitlab duo enterprise" data-ga-location="header" data-fetch-key="data-v-dbfc8738:0" data-v-dbfc8738 data-v-697d4b95><div class="banner" data-v-dbfc8738><img src="/_nuxt/image/eecfc0.svg" alt="" class="slp-ml-24 banner_image" data-v-dbfc8738> <button type="button" class="slp-btn cta slp-btn-tertiary" data-v-52cd803a data-v-dbfc8738> GitLab Duo Enterprise is now available. <div role="img" aria-hidden="true" class="slp-icon slp-ml-8 arrow-icon slp-icon--color-color-text-300" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-dbfc8738><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></button> <img src="/_nuxt/image/c843cb.svg" alt="" class="banner_image" data-v-dbfc8738></div></a> <div data-fetch-key="SlpNavigationHOC:0" class="nav-hoc" data-v-697d4b95><!----></div> <section role="main" data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-697d4b95></div> <section name="solutions-platform-tab-links" class="container" data-v-4f242786 data-v-697d4b95><div class="tabs-container" data-v-4f242786><ul class="tabs__list" data-v-4f242786><li data-v-4f242786><a text="Security & Compliance" href="/solutions/security-compliance/" data-ga-name="Security & Compliance" data-ga-location="hero tabs" data-v-4f242786>Security & Compliance</a></li><li data-v-4f242786><a text="Software Supply Chain Security" href="/solutions/supply-chain/" data-ga-name="Software Supply Chain Security" data-ga-location="hero tabs" data-v-4f242786>Software Supply Chain Security</a></li><li data-v-4f242786><a text="Compliance & Governance" href="/solutions/continuous-software-compliance/" data-ga-name="Compliance & Governance" data-ga-location="hero tabs" data-v-4f242786>Compliance & Governance</a></li></ul></div></section><section name="solutions-hero" class="hero-wrapper hero-wrapper__gradient-background" data-v-0fec4eed data-v-697d4b95><div class="container slp-overflow-x-hidden" data-v-0fec4eed><div class="slp-row container__row" data-v-2d4c763f data-v-0fec4eed><div class="text-column slp-col-md-6" data-v-7737f7b0 data-v-0fec4eed><div data-v-7737f7b0 data-v-0fec4eed><div data-v-7737f7b0 data-v-0fec4eed><a href="https://about.gitlab.com/blog/2024/09/19/gitlab-advanced-sast-is-now-generally-available/" data-ga-name="Advanced SAST now available learn more" data-ga-location="hero" class="badge" data-v-3aabd077 data-v-0fec4eed> Advanced SAST now available. Learn more <div role="img" aria-hidden="true" class="slp-icon slp-ml-8 slp-icon--color-color-text-300" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-3aabd077><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></a> </div></div> <div data-v-7737f7b0 data-v-0fec4eed><div class="text" data-v-7737f7b0 data-v-0fec4eed><h2 class="slp-mt-16 slp-mt-md-0 slp-mb-16 header-text slp-text-heading1-bold" data-v-19cf63b5 data-v-0fec4eed><span data-v-19cf63b5 data-v-0fec4eed>Security and compliance</span><!----></h2> <span class="text__span" data-v-7737f7b0 data-v-0fec4eed><p>End-to-end security and compliance, built right into the platform your developers already use.</p> </span> <!----></div></div> <div class="buttons slp-mt-32" data-v-7737f7b0 data-v-0fec4eed><div data-v-7737f7b0 data-v-0fec4eed><a href="/sales/" data-ga-name="sales" data-ga-location="hero" class="slp-btn slp-mb-8 button slp-btn-primary" data-v-52cd803a data-v-0fec4eed>Contact sales <!----></a></div> <div data-v-7737f7b0 data-v-0fec4eed></div> <a href="https://gitlab.com/-/trial_registrations/new?glm_source=about.gitlab.com/&glm_content=default-saas-trial" data-ga-name="free trial" data-ga-location="hero" class="slp-btn slp-mb-8 hero-wrapper__button slp-btn-secondary" data-v-52cd803a data-v-0fec4eed>Start your free trial <div role="img" aria-hidden="true" class="slp-icon slp-ml-8 slp-icon--color-color-text-300" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-0fec4eed><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M5.22 2.22a.75.75 0 011.06 0l5.252 5.252a.75.75 0 010 1.06L6.28 13.784a.75.75 0 11-1.06-1.06l4.72-4.723L5.22 3.28a.75.75 0 010-1.06z"/></svg></div><!----></div></a></div> <!----> <!----></div> <div class="image-column column slp-col-md-5" data-v-7737f7b0 data-v-0fec4eed><div class="image-container" data-v-7737f7b0 data-v-0fec4eed><img id="image-container__image" src="//images.ctfassets.net/xz1dnu24egyd/21V8dEtFfWntxzU3G3M9gR/841eb61f8a1348573007feb383817b79/security-img_1.png" alt="Security compliance hero" loading="lazy" class="image" data-v-7737f7b0 data-v-0fec4eed></div></div> <div class="container__purple-background container__gradient-background" data-v-2d4c763f data-v-0fec4eed></div></div></div> <div class="modal__backdrop modal__backdrop--light" style="display:none" data-v-4cac5099 data-v-0fec4eed><div class="modal" data-v-4cac5099><header class="modal__header" data-v-4cac5099> <button type="button" class="btn btn__close" data-v-4cac5099><svg width="32" height="32" viewBox="0 0 32 32" fill="none" xmlns="http://www.w3.org/2000/svg" data-v-4cac5099><circle cx="16" cy="16" r="16" fill="white" fill-opacity="0.9"></circle> <path d="M19.9515 10.3515C20.4201 9.88284 21.1799 9.88284 21.6485 10.3515C22.1172 10.8201 22.1172 11.5799 21.6485 12.0485L17.6971 16L21.6485 19.9515C22.1172 20.4201 22.1172 21.1799 21.6485 21.6485C21.1799 22.1172 20.4201 22.1172 19.9515 21.6485L16 17.6971L12.0485 21.6485C11.5799 22.1172 10.8201 22.1172 10.3515 21.6485C9.88284 21.1799 9.88284 20.4201 10.3515 19.9515L14.3029 16L10.3515 12.0485C9.88284 11.5799 9.88284 10.8201 10.3515 10.3515C10.8201 9.88284 11.5799 9.88284 12.0485 10.3515L16 14.3029L19.9515 10.3515Z" fill="#333333"></path></svg></button></header> <section class="modal__body" data-v-4cac5099><lite-vimeo autoplay data-v-4cac5099 data-v-0fec4eed></lite-vimeo></section> <footer class="modal__footer" data-v-4cac5099></footer></div></div></section><section name="by-industry-intro" class="solutions-intro" data-v-2d9f606f data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-2d9f606f><div class="solutions-intro__container slp-flex" data-v-db4b02a6 data-v-2d9f606f><h2 class="solutions-intro__intro-text slp-text-body2" data-v-19cf63b5 data-v-2d9f606f>Trusted By<!----></h2> <a href="/blog/2021/08/04/ubs-gitlab-devops-platform/" data-ga-name="UBS logo" data-ga-location="customers logo" aria-label="Link to UBS customer case study" class="solutions-intro__link" data-v-db4b02a6 data-v-2d9f606f><img src="//images.ctfassets.net/xz1dnu24egyd/2n7QcbQlYLwERy3ItMgsrP/f5ab9507d15c11d97e3283d757702da8/ubs.svg?" alt="UBS logo logo" class="solutions-intro__container__image" data-v-db4b02a6 data-v-2d9f606f></a><a href="https://about.gitlab.com/customers/hackerone/" data-ga-name="Hackerone logo" data-ga-location="customers logo" aria-label="" class="solutions-intro__link" data-v-db4b02a6 data-v-2d9f606f><img src="//images.ctfassets.net/xz1dnu24egyd/44Apzryr025Ca12cwc9K66/af9075ac0300fecee8db931927e53cce/hackerone.png?" alt="Hackerone logo logo" class="solutions-intro__container__image" data-v-db4b02a6 data-v-2d9f606f></a><a href="/customers/thezebra/" data-ga-name="Logo: The Zebra" data-ga-location="customers logo" aria-label="Link to Curve customer case study" class="solutions-intro__link" data-v-db4b02a6 data-v-2d9f606f><img src="//images.ctfassets.net/xz1dnu24egyd/26bv46IqM6uEURGT4EgBTo/16610669ceb61320be4ccef58511978b/zebra.svg?" alt="Logo: The Zebra logo" class="solutions-intro__container__image" data-v-db4b02a6 data-v-2d9f606f></a><a href="/customers/hilti/" data-ga-name="Hilti logo" data-ga-location="customers logo" aria-label="Link to Hilti customer case study" class="solutions-intro__link" data-v-db4b02a6 data-v-2d9f606f><img src="//images.ctfassets.net/xz1dnu24egyd/7E565qWcMpFVj5WIV0inJk/412f1c12eb45a3e1a17402f9018bc01e/hilti_logo.svg?" alt="Hilti logo logo" class="solutions-intro__container__image" data-v-db4b02a6 data-v-2d9f606f></a><a href="/customers/conversica/" data-ga-name="Logo: Conversica" data-ga-location="customers logo" aria-label="Link to Conversica customer case study" class="solutions-intro__link" data-v-db4b02a6 data-v-2d9f606f><img src="//images.ctfassets.net/xz1dnu24egyd/2KqR2Vp6v3uXHxvK9zQdL3/e2c969d9ccc33e032599daee0b63c8f9/conversica.svg?" alt="Logo: Conversica logo" class="solutions-intro__container__image" data-v-db4b02a6 data-v-2d9f606f></a><a href="/customers/bab/" data-ga-name="Logo: Bendigo and Adelaide Bank" data-ga-location="customers logo" aria-label="Link to Bendigo and Adelaide Bank customer case study" class="solutions-intro__link" data-v-db4b02a6 data-v-2d9f606f><img src="//images.ctfassets.net/xz1dnu24egyd/35U30Y5j0MbVQzS47dHgpL/611899a2437747143837287cf4f5f0e1/bendigo_and_adelaide_bank.svg?" alt="Logo: Bendigo and Adelaide Bank logo" class="solutions-intro__container__image" data-v-db4b02a6 data-v-2d9f606f></a><a href="/customers/glympse/" data-ga-name="Logo: Glympse" data-ga-location="customers logo" aria-label="Link to Glympse customer case study" class="solutions-intro__link" data-v-db4b02a6 data-v-2d9f606f><img src="//images.ctfassets.net/xz1dnu24egyd/7oD8BxnoeiZ8uWb6VN2dpy/2cf95a549deb90683052be821b0f4b1e/glympse-logo-mono.svg?" alt="Logo: Glympse logo" class="solutions-intro__container__image" data-v-db4b02a6 data-v-2d9f606f></a></div></div></section><section name="by-solution-benefits" class="by-solution-benefits slp-py-48 slp-py-md-96" data-v-1828b4e8 data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-1828b4e8><!----> <div class="slp-row by-solution-benefits__row" data-v-2d4c763f data-v-1828b4e8><div class="slp-pr-md-16 slp-col-md-6" data-v-7737f7b0 data-v-1828b4e8><div class="slp-pb-24" data-v-7737f7b0 data-v-1828b4e8><h2 class="slp-mb-16 slp-text-heading2-bold" data-v-19cf63b5 data-v-1828b4e8><span data-v-19cf63b5 data-v-1828b4e8><p>Ship with speed and <span class="gradient">Security<span></span></span></p> </span><!----></h2> <span class="slp-mb-16 by-solution-benefits__subcopy slp-text-heading5" data-v-19cf63b5 data-v-1828b4e8><span data-v-19cf63b5 data-v-1828b4e8>GitLab is the only platform that has all the security functionality that you need — for applications and APIs.</span><!----></span> <!----></div></div> <div class="slp-pl-md-16 slp-col-lg-6" data-v-7737f7b0 data-v-1828b4e8><div data-v-7737f7b0 data-v-1828b4e8><div class="by-solution-benefits__items-wrapper" data-v-7737f7b0 data-v-1828b4e8><div data-inbound-analytics="public-sector-leap-target" data-toggle-group="Strengthen security and compliance with AI" data-ga-toggle="expand" class="accordion" data-v-443d0543 data-v-1828b4e8><h3 class="summary slp-text-heading5-bold" data-v-19cf63b5 data-v-443d0543><button id="strengthensecurityandcompliancewithaiid" aria-expanded="true" aria-controls="strengthensecurityandcompliancewithaisection" class="accordion__button" data-v-19cf63b5 data-v-443d0543><!----> <span class="accordion__header" data-v-19cf63b5 data-v-443d0543>Strengthen security and compliance with AI</span> <span class="accordion__icon accordion__icon--open" data-v-19cf63b5 data-v-443d0543></span></button><!----></h3> <div id="strengthensecurityandcompliancewithaisection" role="region" aria-labelledby="strengthensecurityandcompliancewithaiid" class="content-container" data-v-443d0543><div class="content" data-v-443d0543><p>Only GitLab provides AI throughout the software development lifecycle to help developers write more secure code — from AI-powered code suggestions and vulnerability explanations to AI-assisted generation of merge requests containing the changes required to mitigate vulnerabilities.</p> </div> <a href="/gitlab-duo/#features" data-ga-name="gitlab duo features" data-ga-location="body" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-443d0543><span data-v-52cd803a data-v-443d0543>Learn more</span> <div role="img" aria-hidden="true" alt="Chevron Right Icon" class="slp-icon slp-ml-8 slp-icon--color-color-text-300" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-443d0543><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M5.22 2.22a.75.75 0 011.06 0l5.252 5.252a.75.75 0 010 1.06L6.28 13.784a.75.75 0 11-1.06-1.06l4.72-4.723L5.22 3.28a.75.75 0 010-1.06z"/></svg></div><!----></div></a></div></div><div data-inbound-analytics="public-sector-leap-target" data-toggle-group="Streamline identity and access management" data-ga-toggle="collapse" class="accordion" data-v-443d0543 data-v-1828b4e8><h3 class="summary slp-text-heading5-bold" data-v-19cf63b5 data-v-443d0543><button id="streamlineidentityandaccessmanagementid" aria-expanded="false" aria-controls="streamlineidentityandaccessmanagementsection" class="accordion__button" data-v-19cf63b5 data-v-443d0543><!----> <span class="accordion__header" data-v-19cf63b5 data-v-443d0543>Streamline identity and access management</span> <span class="accordion__icon" data-v-19cf63b5 data-v-443d0543></span></button><!----></h3> <div id="streamlineidentityandaccessmanagementsection" role="region" aria-labelledby="streamlineidentityandaccessmanagementid" class="content-container" style="display:none" data-v-443d0543><div class="content" data-v-443d0543><p>Create a seamless experience for users to access security capabilities across the software development lifecycle — instead of logging into multiple separate tools, teams can authenticate into one secure platform.</p> </div> <!----></div></div><div data-inbound-analytics="public-sector-leap-target" data-toggle-group="Mitigate risk with secret detection" data-ga-toggle="collapse" class="accordion" data-v-443d0543 data-v-1828b4e8><h3 class="summary slp-text-heading5-bold" data-v-19cf63b5 data-v-443d0543><button id="mitigateriskwithsecretdetectionid" aria-expanded="false" aria-controls="mitigateriskwithsecretdetectionsection" class="accordion__button" data-v-19cf63b5 data-v-443d0543><!----> <span class="accordion__header" data-v-19cf63b5 data-v-443d0543>Mitigate risk with secret detection</span> <span class="accordion__icon" data-v-19cf63b5 data-v-443d0543></span></button><!----></h3> <div id="mitigateriskwithsecretdetectionsection" role="region" aria-labelledby="mitigateriskwithsecretdetectionid" class="content-container" style="display:none" data-v-443d0543><div class="content" data-v-443d0543><p>Empower developers to proactively identify and remove leaked secrets in issue and epic descriptions to prevent credentials and other sensitive information from being visible to potential attackers.</p> </div> <!----></div></div><div data-inbound-analytics="public-sector-leap-target" data-toggle-group="Manage vulnerabilities where developers work" data-ga-toggle="collapse" class="accordion" data-v-443d0543 data-v-1828b4e8><h3 class="summary slp-text-heading5-bold" data-v-19cf63b5 data-v-443d0543><button id="managevulnerabilitieswheredevelopersworkid" aria-expanded="false" aria-controls="managevulnerabilitieswheredevelopersworksection" class="accordion__button" data-v-19cf63b5 data-v-443d0543><!----> <span class="accordion__header" data-v-19cf63b5 data-v-443d0543>Manage vulnerabilities where developers work</span> <span class="accordion__icon" data-v-19cf63b5 data-v-443d0543></span></button><!----></h3> <div id="managevulnerabilitieswheredevelopersworksection" role="region" aria-labelledby="managevulnerabilitieswheredevelopersworkid" class="content-container" style="display:none" data-v-443d0543><div class="content" data-v-443d0543><p>Scan commits for secrets in the IDE before pushing to production and pull security findings into the IDE after pipelines run — so developers don’t have to switch to a different tool to identify and fix vulnerabilities.</p> </div> <!----></div></div><div data-inbound-analytics="public-sector-leap-target" data-toggle-group="Test and protect APIs" data-ga-toggle="collapse" class="accordion" data-v-443d0543 data-v-1828b4e8><h3 class="summary slp-text-heading5-bold" data-v-19cf63b5 data-v-443d0543><button id="testandprotectapisid" aria-expanded="false" aria-controls="testandprotectapissection" class="accordion__button" data-v-19cf63b5 data-v-443d0543><!----> <span class="accordion__header" data-v-19cf63b5 data-v-443d0543>Test and protect APIs</span> <span class="accordion__icon" data-v-19cf63b5 data-v-443d0543></span></button><!----></h3> <div id="testandprotectapissection" role="region" aria-labelledby="testandprotectapisid" class="content-container" style="display:none" data-v-443d0543><div class="content" data-v-443d0543><p>Identify and remediate API vulnerabilities before they make it to production to make APIs safer and reduce data breach risks.</p> </div> <!----></div></div><div data-inbound-analytics="public-sector-leap-target" data-toggle-group="Automate scan enforcement and approvals" data-ga-toggle="collapse" class="accordion" data-v-443d0543 data-v-1828b4e8><h3 class="summary slp-text-heading5-bold" data-v-19cf63b5 data-v-443d0543><button id="automatescanenforcementandapprovalsid" aria-expanded="false" aria-controls="automatescanenforcementandapprovalssection" class="accordion__button" data-v-19cf63b5 data-v-443d0543><!----> <span class="accordion__header" data-v-19cf63b5 data-v-443d0543>Automate scan enforcement and approvals</span> <span class="accordion__icon" data-v-19cf63b5 data-v-443d0543></span></button><!----></h3> <div id="automatescanenforcementandapprovalssection" role="region" aria-labelledby="automatescanenforcementandapprovalsid" class="content-container" style="display:none" data-v-443d0543><div class="content" data-v-443d0543><p>Use security policies to require specific security scans to run, or to ensure that particular security, legal, or compliance requirements are met before a merge request can be merged into the default branch.</p> </div> <a href="/solutions/continuous-software-compliance/" data-ga-name="continuous software compliance" data-ga-location="body" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-443d0543><span data-v-52cd803a data-v-443d0543>Learn more</span> <div role="img" aria-hidden="true" alt="Chevron Right Icon" class="slp-icon slp-ml-8 slp-icon--color-color-text-300" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-443d0543><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M5.22 2.22a.75.75 0 011.06 0l5.252 5.252a.75.75 0 010 1.06L6.28 13.784a.75.75 0 11-1.06-1.06l4.72-4.723L5.22 3.28a.75.75 0 010-1.06z"/></svg></div><!----></div></a></div></div></div></div></div></div></div></section><div id="benefits-container" name="dev-ex-benefits" class="gradient" data-v-2ec0843a data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-2ec0843a><div class="slp-row" data-v-2d4c763f data-v-2ec0843a><div class="benefits-text animation-wrapper slp-pr-lg-48 slp-col-md-6" data-v-7737f7b0 data-v-2ec0843a><div class="text__span slp-mb-24" data-v-7737f7b0 data-v-2ec0843a><p>Developer-first security. More secure development.</p> </div></div> <div class="slp-col-md-6" data-v-7737f7b0 data-v-2ec0843a><div class="video" data-v-7737f7b0 data-v-2ec0843a><div class="image__container" data-v-7737f7b0 data-v-2ec0843a><img src="//images.ctfassets.net/xz1dnu24egyd/ilCnTCqUJtB6uyTagidAF/f7fdeb19fb286ff20b235b95d2fa44a0/Group_7186.png" data-v-7737f7b0 data-v-2ec0843a> <div class="image__container--play" data-v-7737f7b0 data-v-2ec0843a><svg width="48" height="48" viewBox="0 0 48 48" fill="none" xmlns="http://www.w3.org/2000/svg" data-v-7737f7b0 data-v-2ec0843a><circle cx="24" cy="24" r="24" fill="#171321" class="container" data-v-7737f7b0 data-v-2ec0843a></circle> <path d="M19.4339 34.0523C19.2888 34.1455 19.1261 34.2081 18.9559 34.2362C18.7857 34.2642 18.6116 34.2572 18.4442 34.2154C18.2768 34.1737 18.1197 34.0981 17.9827 33.9934C17.8456 33.8887 17.7313 33.757 17.647 33.6065C17.5205 33.3896 17.454 33.1429 17.4546 32.8918V15.979C17.4546 15.2269 18.0358 14.6182 18.7545 14.6182C18.9957 14.619 19.2316 14.6892 19.4339 14.8204L32.5451 23.2758C32.7351 23.404 32.8906 23.5769 32.9982 23.7792C33.1058 23.9816 33.162 24.2072 33.162 24.4363C33.162 24.6655 33.1058 24.8911 32.9982 25.0935C32.8906 25.2958 32.7351 25.4687 32.5451 25.5969L19.4339 34.0523Z" fill="white" data-v-7737f7b0 data-v-2ec0843a></path></svg></div></div></div></div></div></div> <div class="modal__backdrop modal__backdrop--light" style="display:none" data-v-4cac5099 data-v-2ec0843a><div class="modal" data-v-4cac5099><header class="modal__header" data-v-4cac5099> <button type="button" class="btn btn__close" data-v-4cac5099><svg width="32" height="32" viewBox="0 0 32 32" fill="none" xmlns="http://www.w3.org/2000/svg" data-v-4cac5099><circle cx="16" cy="16" r="16" fill="white" fill-opacity="0.9"></circle> <path d="M19.9515 10.3515C20.4201 9.88284 21.1799 9.88284 21.6485 10.3515C22.1172 10.8201 22.1172 11.5799 21.6485 12.0485L17.6971 16L21.6485 19.9515C22.1172 20.4201 22.1172 21.1799 21.6485 21.6485C21.1799 22.1172 20.4201 22.1172 19.9515 21.6485L16 17.6971L12.0485 21.6485C11.5799 22.1172 10.8201 22.1172 10.3515 21.6485C9.88284 21.1799 9.88284 20.4201 10.3515 19.9515L14.3029 16L10.3515 12.0485C9.88284 11.5799 9.88284 10.8201 10.3515 10.3515C10.8201 9.88284 11.5799 9.88284 12.0485 10.3515L16 14.3029L19.9515 10.3515Z" fill="#333333"></path></svg></button></header> <section class="modal__body" data-v-4cac5099><lite-youtube width="560" height="315" title="YouTube video player" data-v-4cac5099 data-v-2ec0843a></lite-youtube></section> <footer class="modal__footer" data-v-4cac5099></footer></div></div></div><section name="solutions-platform-column-copy" class="column-copy slp-mt-64" data-v-1aeb3830 data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-1aeb3830><div class="column-copy__pill-wrapper" data-v-db4b02a6 data-v-1aeb3830><div class="column-copy__pill" data-v-db4b02a6 data-v-1aeb3830><div role="img" aria-hidden="true" alt="Icon" class="slp-icon slp-mr-8 slp-icon--size-sm slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-1aeb3830><!----><div data-v-e356681a> <svg width="48" height="48" viewBox="0 0 48 48" fill="none" xmlns="http://www.w3.org/2000/svg" fill="currentColor"> <path d="M4.89848 8.03516C5.32568 21.3216 3.67928 26.5535 7.06808 33.5999C9.46808 38.5871 17.6281 44.7647 23.9977 47.0399" stroke="currentColor" stroke-width="1.27982" stroke-linecap="round" stroke-linejoin="round" fill="transparent"/> <path d="M8.01758 8.21756C11.0357 8.16435 14.0108 7.49286 16.7592 6.24457C19.5076 4.99628 21.9709 3.1977 23.9968 0.959961C26.3762 3.58886 29.3549 5.60475 32.6799 6.83649C36.0049 8.06822 39.5781 8.47942 43.096 8.03516C42.6688 21.3216 44.3152 26.5536 40.9264 33.6C38.5264 38.5872 30.3664 44.7648 23.9968 47.04" stroke="currentColor" stroke-width="1.27982" stroke-linecap="round" stroke-linejoin="round" fill="transparent"/> <path d="M32.6414 19.3678L30.4622 17.1886C30.3422 17.0676 30.1993 16.9715 30.042 16.906C29.8846 16.8404 29.7159 16.8066 29.5454 16.8066C29.3749 16.8066 29.2062 16.8404 29.0488 16.906C28.8914 16.9715 28.7486 17.0676 28.6286 17.1886L21.9422 23.8558L19.3982 21.307C19.1545 21.0649 18.8249 20.929 18.4814 20.929C18.1379 20.929 17.8083 21.0649 17.5646 21.307L15.3854 23.491C15.1436 23.7339 15.0078 24.0627 15.0078 24.4054C15.0078 24.7482 15.1436 25.0769 15.3854 25.3198L20.4734 30.4078C20.666 30.6004 20.8946 30.7532 21.1462 30.8574C21.3978 30.9617 21.6675 31.0153 21.9398 31.0153C22.2121 31.0153 22.4818 30.9617 22.7334 30.8574C22.985 30.7532 23.2136 30.6004 23.4062 30.4078L32.6414 21.1966C32.7623 21.077 32.8583 20.9346 32.9238 20.7776C32.9893 20.6207 33.023 20.4523 33.023 20.2822C33.023 20.1122 32.9893 19.9438 32.9238 19.7868C32.8583 19.6299 32.7623 19.4874 32.6414 19.3678V19.3678Z" stroke="currentColor" stroke-width="1.27982" stroke-linecap="round" stroke-linejoin="round" fill="transparent"/> </svg></div></div> <span class="slp-text-body2-bold" data-v-19cf63b5 data-v-1aeb3830> Application & API Security <!----></span></div></div> <h3 class="slp-mb-24 subtitle slp-text-heading3-bold" data-v-19cf63b5 data-v-1aeb3830> Access the full breadth of security scanning in a single platform <!----></h3> <!----> <div class="slp-row slp-my-48" data-v-2d4c763f data-v-1aeb3830><div class="slp-col-md-6" data-v-7737f7b0 data-v-1aeb3830><span class="checked-heading" data-v-7737f7b0 data-v-1aeb3830><div role="img" aria-hidden="true" alt="Icon" class="slp-icon slp-icon--size-md" style="color:#a989f5" data-v-e356681a data-v-1aeb3830><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M12.78 4.62a.75.75 0 010 1.06l-6.097 6.097a.75.75 0 01-1.069-.009L3.211 9.284a.75.75 0 111.078-1.043l1.873 1.936L11.72 4.62a.75.75 0 011.06 0z"/></svg></div><!----></div> <p class="slp-my-8 slp-text-body1-bold" data-v-19cf63b5 data-v-1aeb3830> Pre-build scanning <!----></p></span> <div class="slp-my-8 slp-pr-32 description" data-v-7737f7b0 data-v-1aeb3830><p>Check code for security compliance before deployment with secret detection, <a href="https://docs.gitlab.com/ee/user/application_security/sast/gitlab_advanced_sast.html">static application security testing (SAST)</a>, infrastructure as code (IaC) scanning, dependency scanning, and license compliance.</p> </div></div> <div class="slp-col-md-6" data-v-7737f7b0 data-v-1aeb3830><span class="checked-heading" data-v-7737f7b0 data-v-1aeb3830><div role="img" aria-hidden="true" alt="Icon" class="slp-icon slp-icon--size-md" style="color:#a989f5" data-v-e356681a data-v-1aeb3830><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M12.78 4.62a.75.75 0 010 1.06l-6.097 6.097a.75.75 0 01-1.069-.009L3.211 9.284a.75.75 0 111.078-1.043l1.873 1.936L11.72 4.62a.75.75 0 011.06 0z"/></svg></div><!----></div> <p class="slp-my-8 slp-text-body1-bold" data-v-19cf63b5 data-v-1aeb3830> Post-build scanning <!----></p></span> <div class="slp-my-8 slp-pr-32 description" data-v-7737f7b0 data-v-1aeb3830><p>Simulate hacker inputs and activity in your application with API security testing, operational container scanning, dynamic application security testing (DAST), and fuzz testing.</p> </div></div></div></div></section><section name="solutions-platform-column-copy" class="column-copy slp-mt-64" data-v-1aeb3830 data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-1aeb3830><div class="column-copy__pill-wrapper" data-v-db4b02a6 data-v-1aeb3830><div class="column-copy__pill" data-v-db4b02a6 data-v-1aeb3830><div role="img" aria-hidden="true" alt="Icon" class="slp-icon slp-mr-8 slp-icon--size-sm slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-1aeb3830><!----><div data-v-e356681a><svg viewBox="0 0 32 32" fill="currentColor" fill-opacity="0" xmlns="http://www.w3.org/2000/svg"><g clip-path="url(#clip0_1145_6758)" stroke="currentColor" stroke-width="1.28" stroke-linecap="round" stroke-linejoin="round"><path d="M14.928 12.872l-4.182-4.16a3.622 3.622 0 10-.115 5.165l.96-.96m5.986-5.98l.893-.96a7.513 7.513 0 115.369 12.77"/><path d="M20.335 9.576l.912-.87a3.622 3.622 0 11.103 5.151l-7.823-7.88a7.515 7.515 0 10-5.372 12.769"/><path d="M15.997 28.28c-3.052-.93-5.65-3.596-5.65-7.07v-4.892a4.863 4.863 0 005.65-1.744v0a4.863 4.863 0 005.65 1.744v4.892c0 3.474-2.598 6.14-5.65 7.07"/><path d="M17.3 21.606v-1.033a1.283 1.283 0 00-1.283-1.299v0a1.285 1.285 0 00-1.282 1.299v1.033"/><path d="M17.758 21.6h-3.513v2.478h3.513V21.6z"/></g><defs><clipPath id="clip0_1145_6758"><path fill="#fff" d="M0 0h31.995v31.995H0z"/></clipPath></defs></svg></div></div> <span class="slp-text-body2-bold" data-v-19cf63b5 data-v-1aeb3830> Software Supply Chain Security <!----></span></div></div> <h3 class="slp-mb-24 subtitle slp-text-heading3-bold" data-v-19cf63b5 data-v-1aeb3830> Stay ahead of threats and deliver software faster <!----></h3> <a href="/solutions/supply-chain/" data-ga-name="supply chain" data-ga-location="body" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-1aeb3830> Learn more <div role="img" aria-hidden="true" alt="Icon" class="slp-icon slp-icon--color-color-text-300" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-1aeb3830><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M5.22 2.22a.75.75 0 011.06 0l5.252 5.252a.75.75 0 010 1.06L6.28 13.784a.75.75 0 11-1.06-1.06l4.72-4.723L5.22 3.28a.75.75 0 010-1.06z"/></svg></div><!----></div></a> <div class="slp-row slp-my-48" data-v-2d4c763f data-v-1aeb3830><div class="slp-col-md-6" data-v-7737f7b0 data-v-1aeb3830><span class="checked-heading" data-v-7737f7b0 data-v-1aeb3830><div role="img" aria-hidden="true" alt="Icon" class="slp-icon slp-icon--size-md" style="color:#a989f5" data-v-e356681a data-v-1aeb3830><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M12.78 4.62a.75.75 0 010 1.06l-6.097 6.097a.75.75 0 01-1.069-.009L3.211 9.284a.75.75 0 111.078-1.043l1.873 1.936L11.72 4.62a.75.75 0 011.06 0z"/></svg></div><!----></div> <p class="slp-my-8 slp-text-body1-bold" data-v-19cf63b5 data-v-1aeb3830> Dynamic SBOM management <!----></p></span> <div class="slp-my-8 slp-pr-32 description" data-v-7737f7b0 data-v-1aeb3830><p>Automatically create a standard software bill of materials (SBOM) with each container or dependency scan, or import an SBOM from your preferred tool — and easily combine multiple CycloneDX SBOMs into one.</p> </div></div> <div class="slp-col-md-6" data-v-7737f7b0 data-v-1aeb3830><span class="checked-heading" data-v-7737f7b0 data-v-1aeb3830><div role="img" aria-hidden="true" alt="Icon" class="slp-icon slp-icon--size-md" style="color:#a989f5" data-v-e356681a data-v-1aeb3830><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M12.78 4.62a.75.75 0 010 1.06l-6.097 6.097a.75.75 0 01-1.069-.009L3.211 9.284a.75.75 0 111.078-1.043l1.873 1.936L11.72 4.62a.75.75 0 011.06 0z"/></svg></div><!----></div> <p class="slp-my-8 slp-text-body1-bold" data-v-19cf63b5 data-v-1aeb3830> Continuous vulnerability scanning <!----></p></span> <div class="slp-my-8 slp-pr-32 description" data-v-7737f7b0 data-v-1aeb3830><p>Protect your organization against zero-day attacks by continuously scanning your applications for known open source vulnerabilities, regardless of when your code was last updated.</p> </div></div></div></div></section><section name="solutions-platform-column-copy" class="column-copy slp-mt-64" data-v-1aeb3830 data-v-697d4b95><div class="slp-container no-bottom-border" data-v-db4b02a6 data-v-1aeb3830><div class="column-copy__pill-wrapper" data-v-db4b02a6 data-v-1aeb3830><div class="column-copy__pill" data-v-db4b02a6 data-v-1aeb3830><div role="img" aria-hidden="true" alt="Icon" class="slp-icon slp-mr-8 slp-icon--size-sm slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-1aeb3830><!----><div data-v-e356681a><svg width="32" height="33" viewBox="0 0 32 33" fill="currentColor" fill-opacity="0" xmlns="http://www.w3.org/2000/svg"> <g clip-path="url(#clip0_7608_14897)"> <path d="M23.5227 6.07217H24.5082C25.1144 6.07217 25.6958 6.31276 26.1247 6.74109C26.5536 7.16942 26.795 7.75047 26.7959 8.35665V29.9759C26.7959 30.5827 26.5548 31.1645 26.1258 31.5936C25.6968 32.0226 25.1149 32.2636 24.5082 32.2636H7.48664C6.87992 32.2636 6.29804 32.0226 5.86902 31.5936C5.44 31.1645 5.19897 30.5827 5.19897 29.9759V8.35665C5.19982 7.75047 5.44122 7.16942 5.87015 6.74109C6.29908 6.31276 6.88047 6.07217 7.48664 6.07217H8.4721" stroke="currentColor" stroke-width="1.27982" stroke-linecap="round" stroke-linejoin="round"/> <path d="M19.1112 4.52688C18.7912 0.626643 13.2592 0.485863 12.8849 4.52688H10.6676V9.09582H21.3285V4.52688H19.1112Z" stroke="currentColor" stroke-width="1.27982" stroke-linecap="round" stroke-linejoin="round"/> <path d="M13.406 18.9221L14.9445 20.4606L18.6081 16.7971" stroke="currentColor" stroke-width="1.27982" stroke-linecap="round" stroke-linejoin="round"/> <path d="M23.5242 28.9905V9.09573" stroke="currentColor" stroke-width="1.27982" stroke-linecap="round" stroke-linejoin="round"/> <path d="M8.4718 9.09573V28.9905H20.8156" stroke="currentColor" stroke-width="1.27982" stroke-linecap="round" stroke-linejoin="round"/> </g> <defs> <clipPath id="clip0_7608_14897"> <rect width="31.9954" height="31.9954" fill="white" transform="translate(0 0.908081)"/> </clipPath> </defs> </svg> </div></div> <span class="slp-text-body2-bold" data-v-19cf63b5 data-v-1aeb3830> Compliance & Governance <!----></span></div></div> <h3 class="slp-mb-24 subtitle slp-text-heading3-bold" data-v-19cf63b5 data-v-1aeb3830> Enforce compliance at scale <!----></h3> <a href="/solutions/continuous-software-compliance/" data-ga-name="continuous software compliance" data-ga-location="body" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-1aeb3830> Learn more <div role="img" aria-hidden="true" alt="Icon" class="slp-icon slp-icon--color-color-text-300" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-1aeb3830><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M5.22 2.22a.75.75 0 011.06 0l5.252 5.252a.75.75 0 010 1.06L6.28 13.784a.75.75 0 11-1.06-1.06l4.72-4.723L5.22 3.28a.75.75 0 010-1.06z"/></svg></div><!----></div></a> <div class="slp-row slp-my-48" data-v-2d4c763f data-v-1aeb3830><div class="slp-col-md-6" data-v-7737f7b0 data-v-1aeb3830><span class="checked-heading" data-v-7737f7b0 data-v-1aeb3830><div role="img" aria-hidden="true" alt="Icon" class="slp-icon slp-icon--size-md" style="color:#a989f5" data-v-e356681a data-v-1aeb3830><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M12.78 4.62a.75.75 0 010 1.06l-6.097 6.097a.75.75 0 01-1.069-.009L3.211 9.284a.75.75 0 111.078-1.043l1.873 1.936L11.72 4.62a.75.75 0 011.06 0z"/></svg></div><!----></div> <p class="slp-my-8 slp-text-body1-bold" data-v-19cf63b5 data-v-1aeb3830> Centralized compliance visibility <!----></p></span> <div class="slp-my-8 slp-pr-32 description" data-v-7737f7b0 data-v-1aeb3830><p>Get centralized visibility into audit logs, credential security, and how projects adhere to regulatory compliance requirements.</p> </div></div> <div class="slp-col-md-6" data-v-7737f7b0 data-v-1aeb3830><span class="checked-heading" data-v-7737f7b0 data-v-1aeb3830><div role="img" aria-hidden="true" alt="Icon" class="slp-icon slp-icon--size-md" style="color:#a989f5" data-v-e356681a data-v-1aeb3830><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M12.78 4.62a.75.75 0 010 1.06l-6.097 6.097a.75.75 0 01-1.069-.009L3.211 9.284a.75.75 0 111.078-1.043l1.873 1.936L11.72 4.62a.75.75 0 011.06 0z"/></svg></div><!----></div> <p class="slp-my-8 slp-text-body1-bold" data-v-19cf63b5 data-v-1aeb3830> Flexible policy management <!----></p></span> <div class="slp-my-8 slp-pr-32 description" data-v-7737f7b0 data-v-1aeb3830><p>Designate specific security scans and CI jobs that developers can't circumvent, and ensure that security, legal, and compliance requirements are met before code is merged.​</p> </div></div></div></div></section><section aria-roledescription="carousel" aria-label="Customer Quote Carousel" name="quote-carousel" styling="solutions" data-v-02d1c964 data-v-697d4b95><div class="slp-gradient-background quote-carousel-wrapper" data-v-db4b02a6 data-v-02d1c964><div class="slp-container" data-v-db4b02a6><div class="header" data-v-db4b02a6 data-v-02d1c964><span class="slp-text-heading2-bold" data-v-19cf63b5 data-v-02d1c964><div data-v-19cf63b5 data-v-02d1c964></div><!----></span></div> <div class="controls" data-v-db4b02a6 data-v-02d1c964><div class="arrow-btns" data-v-db4b02a6 data-v-02d1c964><button type="button" aria-label="Previous case study" class="slp-btn arrow-btns__btn slp-btn-icon" data-v-52cd803a data-v-02d1c964><div role="img" aria-hidden="true" class="slp-icon slp-icon--color-color-surface-500" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-02d1c964><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.78 2.22a.75.75 0 00-1.06 0L4.468 7.472a.75.75 0 000 1.06l5.252 5.252a.75.75 0 101.06-1.06L6.06 8.001l4.72-4.721a.75.75 0 000-1.06z"/></svg></div><!----></div></button> <button type="button" aria-label="Next case study" class="slp-btn arrow-btns__btn slp-btn-icon" data-v-52cd803a data-v-02d1c964><div role="img" aria-hidden="true" class="slp-icon slp-icon--color-color-surface-500" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-02d1c964><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M5.22 2.22a.75.75 0 011.06 0l5.252 5.252a.75.75 0 010 1.06L6.28 13.784a.75.75 0 11-1.06-1.06l4.72-4.723L5.22 3.28a.75.75 0 010-1.06z"/></svg></div><!----></div></button></div></div> <div class="quote-carousel" data-v-02d1c964 data-v-02d1c964><div class="logo" data-v-02d1c964><img src="//images.ctfassets.net/xz1dnu24egyd/3I1ivilZncS1r39m5qWrDr/816f4c8f5b9add37b11c34ce4d6645cc/CACI-logo.png" alt="" aria-label="" data-v-02d1c964></div> <div class="content" data-v-02d1c964><div class="quote-container" data-v-02d1c964><!----> <span class="quote slp-text-body1" data-v-19cf63b5 data-v-02d1c964>"GitLab had all the features and automation we needed in one application. It simplified our work. With all of the road mapping, issue tracking, and security scanning in one place, it’s hard to even compare it with what we were using before. "<!----></span> <!----> <div class="author" data-v-02d1c964><!----> <div class="information" data-v-02d1c964><span class="name slp-text-body2-bold" data-v-19cf63b5 data-v-02d1c964>Wesley Monroe<!----></span> <span class="title slp-text-body2" data-v-19cf63b5 data-v-02d1c964>Technical Project Manager, CACI<!----></span></div></div> <div class="cta" data-v-02d1c964><a href="/customers/caci/" data-ga-name="CACI case study" data-ga-location="body" class="slp-btn button slp-btn-tertiary" data-v-52cd803a data-v-02d1c964>Read the case study <div role="img" aria-hidden="true" class="slp-icon slp-icon--color-color-text-300" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-02d1c964><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M5.22 2.22a.75.75 0 011.06 0l5.252 5.252a.75.75 0 010 1.06L6.28 13.784a.75.75 0 11-1.06-1.06l4.72-4.723L5.22 3.28a.75.75 0 010-1.06z"/></svg></div><!----></div></a></div></div> <div class="metrics" data-v-02d1c964><div class="metric" data-v-02d1c964><span class="number slp-text-heading5-bold" data-v-19cf63b5 data-v-02d1c964>90%<!----></span> <span class="text slp-text-body3" data-v-19cf63b5 data-v-02d1c964>savings in labor/admin<!----></span></div><div class="metric" data-v-02d1c964><span class="number slp-text-heading5-bold" data-v-19cf63b5 data-v-02d1c964>13x<!----></span> <span class="text slp-text-body3" data-v-19cf63b5 data-v-02d1c964>faster security scanning<!----></span></div></div></div></div></div></div></section><section name="solutions-platform-header-text" class="header-and-text slp-my-96" data-v-697d4b95><div class="slp-container" data-v-db4b02a6><div class="slp-row" data-v-2d4c763f><div class="slp-col-md-7" data-v-7737f7b0><h2 class="slp-text-heading2-bold" data-v-19cf63b5>Explore all security and compliance features<!----></h2> <h5 class="slp-mt-32 slp-text-heading5" data-v-19cf63b5>Manage security vulnerabilities, policies, and compliance across your entire organization. <!----></h5></div></div></div></section><div slot_enabled="true" name="side-navigation-variant" slot_content="[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]" class="slp-container platform-template" data-v-db4b02a6 data-v-2e40fb39 data-v-697d4b95><div id="side-nav-parent" class="slp-row" data-v-2d4c763f data-v-2e40fb39><div id="side-navigation" class="side-navigation slp-col-md-2" data-v-7737f7b0 data-v-2e40fb39><ul id="side-navigation__wrapper" class="side-navigation__wrapper" data-v-7737f7b0 data-v-2e40fb39><!----> <li class="slp-py-8 slp-my-8" data-v-7737f7b0 data-v-2e40fb39><a href="#container-scanning" data-ga-name="container-scanning" data-ga-location="side anchor" class="side-navigation__text slp-pb-4 slp-text-body2 side-navigation__text--hover" data-v-19cf63b5 data-v-2e40fb39> Container Scanning <!----></a></li><li class="slp-py-8 slp-my-8" data-v-7737f7b0 data-v-2e40fb39><a href="#software-composition-analysis" data-ga-name="software-composition-analysis" data-ga-location="side anchor" class="side-navigation__text slp-pb-4 slp-text-body2" data-v-19cf63b5 data-v-2e40fb39> Software Composition Analysis <!----></a></li><li class="slp-py-8 slp-my-8" data-v-7737f7b0 data-v-2e40fb39><a href="#api-security" data-ga-name="api-security" data-ga-location="side anchor" class="side-navigation__text slp-pb-4 slp-text-body2" data-v-19cf63b5 data-v-2e40fb39> API Security <!----></a></li><li class="slp-py-8 slp-my-8" data-v-7737f7b0 data-v-2e40fb39><a href="#fuzz-testing" data-ga-name="fuzz-testing" data-ga-location="side anchor" class="side-navigation__text slp-pb-4 slp-text-body2" data-v-19cf63b5 data-v-2e40fb39> Coverage-guided Fuzz Testing <!----></a></li><li class="slp-py-8 slp-my-8" data-v-7737f7b0 data-v-2e40fb39><a href="#dast" data-ga-name="dast" data-ga-location="side anchor" class="side-navigation__text slp-pb-4 slp-text-body2" data-v-19cf63b5 data-v-2e40fb39> DAST <!----></a></li><li class="slp-py-8 slp-my-8" data-v-7737f7b0 data-v-2e40fb39><a href="#code-quality" data-ga-name="code-quality" data-ga-location="side anchor" class="side-navigation__text slp-pb-4 slp-text-body2" data-v-19cf63b5 data-v-2e40fb39> Code Quality <!----></a></li><li class="slp-py-8 slp-my-8" data-v-7737f7b0 data-v-2e40fb39><a href="#secret-detection" data-ga-name="secret-detection" data-ga-location="side anchor" class="side-navigation__text slp-pb-4 slp-text-body2" data-v-19cf63b5 data-v-2e40fb39> Secret Detection <!----></a></li><li class="slp-py-8 slp-my-8" data-v-7737f7b0 data-v-2e40fb39><a href="#sast" data-ga-name="sast" data-ga-location="side anchor" class="side-navigation__text slp-pb-4 slp-text-body2" data-v-19cf63b5 data-v-2e40fb39> SAST <!----></a></li><li class="slp-py-8 slp-my-8" data-v-7737f7b0 data-v-2e40fb39><a href="#vulnerability-explanation" data-ga-name="vulnerability-explanation" data-ga-location="side anchor" class="side-navigation__text slp-pb-4 slp-text-body2" data-v-19cf63b5 data-v-2e40fb39> Vulnerability Explanation <!----></a></li><li class="slp-py-8 slp-my-8" data-v-7737f7b0 data-v-2e40fb39><a href="#vulnerability-resolution" data-ga-name="vulnerability-resolution" data-ga-location="side anchor" class="side-navigation__text slp-pb-4 slp-text-body2" data-v-19cf63b5 data-v-2e40fb39> Vulnerability Resolution <!----></a></li><li class="slp-py-8 slp-my-8" data-v-7737f7b0 data-v-2e40fb39><a href="#release-evidence" data-ga-name="release-evidence" data-ga-location="side anchor" class="side-navigation__text slp-pb-4 slp-text-body2" data-v-19cf63b5 data-v-2e40fb39> Release Evidence <!----></a></li><li class="slp-py-8 slp-my-8" data-v-7737f7b0 data-v-2e40fb39><a href="#compliance-management" data-ga-name="compliance-management" data-ga-location="side anchor" class="side-navigation__text slp-pb-4 slp-text-body2" data-v-19cf63b5 data-v-2e40fb39> Compliance Management <!----></a></li><li class="slp-py-8 slp-my-8" data-v-7737f7b0 data-v-2e40fb39><a href="#audit-events" data-ga-name="audit-events" data-ga-location="side anchor" class="side-navigation__text slp-pb-4 slp-text-body2" data-v-19cf63b5 data-v-2e40fb39> Audit Events <!----></a></li><li class="slp-py-8 slp-my-8" data-v-7737f7b0 data-v-2e40fb39><a href="#software-bill-of-materials" data-ga-name="software-bill-of-materials" data-ga-location="side anchor" class="side-navigation__text slp-pb-4 slp-text-body2" data-v-19cf63b5 data-v-2e40fb39> Software Bill of Materials <!----></a></li><li class="slp-py-8 slp-my-8" data-v-7737f7b0 data-v-2e40fb39><a href="#dependency-management" data-ga-name="dependency-management" data-ga-location="side anchor" class="side-navigation__text slp-pb-4 slp-text-body2" data-v-19cf63b5 data-v-2e40fb39> Dependency Management <!----></a></li><li class="slp-py-8 slp-my-8" data-v-7737f7b0 data-v-2e40fb39><a href="#vulnerability-management" data-ga-name="vulnerability-management" data-ga-location="side anchor" class="side-navigation__text slp-pb-4 slp-text-body2" data-v-19cf63b5 data-v-2e40fb39> Vulnerability Management <!----></a></li><li class="slp-py-8 slp-my-8" data-v-7737f7b0 data-v-2e40fb39><a href="#security-policy-management" data-ga-name="security-policy-management" data-ga-location="side anchor" class="side-navigation__text slp-pb-4 slp-text-body2" data-v-19cf63b5 data-v-2e40fb39> Security Policy Management <!----></a></li><li class="slp-py-8 slp-my-8" data-v-7737f7b0 data-v-2e40fb39><a href="#gitlab-advisory-database" data-ga-name="gitlab-advisory-database" data-ga-location="side anchor" class="side-navigation__text slp-pb-4 slp-text-body2" data-v-19cf63b5 data-v-2e40fb39> GitLab Advisory Database <!----></a></li> <!----> <!----></ul></div> <div class="slp-col-md" data-v-7737f7b0 data-v-2e40fb39><div id="container-scanning" name="solutions-platform-link-group" class="link-group slp-mt-32" data-v-4e17ac2d data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-4e17ac2d><div class="gradient-header" data-v-db4b02a6 data-v-4e17ac2d></div> <h4 class="slp-mt-24 slp-text-heading4-bold header-anchor" data-v-19cf63b5 data-v-4e17ac2d>Container Scanning<a href="#container-scanning" aria-hidden="true" class="header-anchor" data-v-19cf63b5 data-v-4e17ac2d><div role="img" aria-hidden="true" alt="Anchor Icon" class="slp-icon slp-ml-16 slp-icon--color-text-link-100" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-4e17ac2d><!----><div data-v-e356681a><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><path fill="currentColor" fill-rule="evenodd" d="M9.683 6.676l-.047-.048C8.27 5.26 6.07 5.243 4.726 6.588l-2.29 2.29c-1.344 1.344-1.328 3.544.04 4.91 1.366 1.368 3.564 1.385 4.908.04l1.753-1.752c-.695.074-1.457-.078-2.176-.444L5.934 12.66c-.634.634-1.67.625-2.312-.017a1.637 1.637 0 01-.017-2.312L6.035 7.9c.634-.634 1.67-.625 2.312.017.024.024.048.05.07.075l.003-.002c.36.36.943.366 1.3.01a.922.922 0 00-.01-1.3l-.027-.024zM6.58 9.586l.048.05c1.367 1.366 3.565 1.384 4.91.04l2.29-2.292c1.344-1.343 1.328-3.542-.04-4.91-1.366-1.366-3.564-1.384-4.908-.04L7.127 4.187c.695-.074 1.457.078 2.176.444l1.028-1.027c.635-.634 1.67-.624 2.313.017.643.644.652 1.678.018 2.312l-2.43 2.432c-.635.634-1.67.624-2.313-.018a1.636 1.636 0 01-.07-.075l-.003.004a.918.918 0 00-1.3-.01.922.922 0 00.01 1.3c.01.007.018.015.027.023z"/></svg></div></div></a><!----></h4> <p class="slp-my-24 link-group__description slp-text-body1" data-v-19cf63b5 data-v-4e17ac2d>Scans your container images for known vulnerabilities within the application environment. Image contents are analyzed against public vulnerability databases.Security findings, additional data, and solutions reported in-line with every merge request along with additional data including solutions. Results are presented as a single report. Container Scanning is considered part of Software Composition Analysis.<!----></p> <div class="slp-row slp-mb-32" data-v-2d4c763f data-v-4e17ac2d><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/editor_extensions/visual_studio_code/#download-the-extension" data-ga-name="Security Scanning IDE integration" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Security Scanning IDE integration </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/container_scanning/" data-ga-name="Container Scanning" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Container Scanning </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/index.html#solutions-for-vulnerabilities-auto-remediation" data-ga-name="Automated solutions for Container Scanning vulnerabilities" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Automated solutions for Container Scanning vulnerabilities </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div></div></div></div><div id="software-composition-analysis" name="solutions-platform-link-group" class="link-group slp-mt-32" data-v-4e17ac2d data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-4e17ac2d><div class="gradient-header" data-v-db4b02a6 data-v-4e17ac2d></div> <h4 class="slp-mt-24 slp-text-heading4-bold header-anchor" data-v-19cf63b5 data-v-4e17ac2d>Software Composition Analysis<a href="#software-composition-analysis" aria-hidden="true" class="header-anchor" data-v-19cf63b5 data-v-4e17ac2d><div role="img" aria-hidden="true" alt="Anchor Icon" class="slp-icon slp-ml-16 slp-icon--color-text-link-100" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-4e17ac2d><!----><div data-v-e356681a><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><path fill="currentColor" fill-rule="evenodd" d="M9.683 6.676l-.047-.048C8.27 5.26 6.07 5.243 4.726 6.588l-2.29 2.29c-1.344 1.344-1.328 3.544.04 4.91 1.366 1.368 3.564 1.385 4.908.04l1.753-1.752c-.695.074-1.457-.078-2.176-.444L5.934 12.66c-.634.634-1.67.625-2.312-.017a1.637 1.637 0 01-.017-2.312L6.035 7.9c.634-.634 1.67-.625 2.312.017.024.024.048.05.07.075l.003-.002c.36.36.943.366 1.3.01a.922.922 0 00-.01-1.3l-.027-.024zM6.58 9.586l.048.05c1.367 1.366 3.565 1.384 4.91.04l2.29-2.292c1.344-1.343 1.328-3.542-.04-4.91-1.366-1.366-3.564-1.384-4.908-.04L7.127 4.187c.695-.074 1.457.078 2.176.444l1.028-1.027c.635-.634 1.67-.624 2.313.017.643.644.652 1.678.018 2.312l-2.43 2.432c-.635.634-1.67.624-2.313-.018a1.636 1.636 0 01-.07-.075l-.003.004a.918.918 0 00-1.3-.01.922.922 0 00.01 1.3c.01.007.018.015.027.023z"/></svg></div></div></a><!----></h4> <p class="slp-my-24 link-group__description slp-text-body1" data-v-19cf63b5 data-v-4e17ac2d>Analyzes external dependencies within your application for known vulnerabilities on each CI/CD code commit. Vulnerabilities, additional data, and solutions are shown in-line with every merge request. Scanner results are collected and presented as a single report. Upon code commit, project dependencies are searched for approved and denied licenses defined by per project custom policies. Software licenses are identified if they are not within policy and are shown in-line for every merge request for immediate resolution.<!----></p> <div class="slp-row slp-mb-32" data-v-2d4c763f data-v-4e17ac2d><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/editor_extensions/visual_studio_code/#download-the-extension" data-ga-name="Security Scanning IDE integration" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Security Scanning IDE integration </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/dependency_scanning/" data-ga-name="Dependency Scanning" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Dependency Scanning </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/index.html#solutions-for-vulnerabilities-auto-remediation" data-ga-name="Automated solutions for Dependency Scanning vulnerabilities" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Automated solutions for Dependency Scanning vulnerabilities </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/compliance/license_approval_policies.html" data-ga-name="License Compliance" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> License Compliance </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div></div></div></div><div id="api-security" name="solutions-platform-link-group" class="link-group slp-mt-32" data-v-4e17ac2d data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-4e17ac2d><div class="gradient-header" data-v-db4b02a6 data-v-4e17ac2d></div> <h4 class="slp-mt-24 slp-text-heading4-bold header-anchor" data-v-19cf63b5 data-v-4e17ac2d>API Security<a href="#api-security" aria-hidden="true" class="header-anchor" data-v-19cf63b5 data-v-4e17ac2d><div role="img" aria-hidden="true" alt="Anchor Icon" class="slp-icon slp-ml-16 slp-icon--color-text-link-100" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-4e17ac2d><!----><div data-v-e356681a><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><path fill="currentColor" fill-rule="evenodd" d="M9.683 6.676l-.047-.048C8.27 5.26 6.07 5.243 4.726 6.588l-2.29 2.29c-1.344 1.344-1.328 3.544.04 4.91 1.366 1.368 3.564 1.385 4.908.04l1.753-1.752c-.695.074-1.457-.078-2.176-.444L5.934 12.66c-.634.634-1.67.625-2.312-.017a1.637 1.637 0 01-.017-2.312L6.035 7.9c.634-.634 1.67-.625 2.312.017.024.024.048.05.07.075l.003-.002c.36.36.943.366 1.3.01a.922.922 0 00-.01-1.3l-.027-.024zM6.58 9.586l.048.05c1.367 1.366 3.565 1.384 4.91.04l2.29-2.292c1.344-1.343 1.328-3.542-.04-4.91-1.366-1.366-3.564-1.384-4.908-.04L7.127 4.187c.695-.074 1.457.078 2.176.444l1.028-1.027c.635-.634 1.67-.624 2.313.017.643.644.652 1.678.018 2.312l-2.43 2.432c-.635.634-1.67.624-2.313-.018a1.636 1.636 0 01-.07-.075l-.003.004a.918.918 0 00-1.3-.01.922.922 0 00.01 1.3c.01.007.018.015.027.023z"/></svg></div></div></a><!----></h4> <p class="slp-my-24 link-group__description slp-text-body1" data-v-19cf63b5 data-v-4e17ac2d>Secures and protects web Application Programming Interfaces from unauthorized access, misuse, and attacks. Tests for known vulnerabilities by performing penetration testing of APIs with DAST. Finds unknown vulnerabilities by performing Fuzz Testing of web API operation parameters.Users can provide credentials to test authenticated APIs. Vulnerabilities, additional data, and solutions are shown in-line with every merge request.. Scanner results are collected and presented as a single report.<!----></p> <div class="slp-row slp-mb-32" data-v-2d4c763f data-v-4e17ac2d><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/editor_extensions/visual_studio_code/#download-the-extension" data-ga-name="Security Scanning IDE integration" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Security Scanning IDE integration </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/api_security/" data-ga-name="API Security Testing" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> API Security Testing </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/api_fuzzing/index.html" data-ga-name="API Fuzz Testing" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> API Fuzz Testing </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/dast/#on-demand-scans" data-ga-name="On-demand API Security Testing scans" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> On-demand API Security Testing scans </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div></div></div></div><div id="fuzz-testing" name="solutions-platform-link-group" class="link-group slp-mt-32" data-v-4e17ac2d data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-4e17ac2d><div class="gradient-header" data-v-db4b02a6 data-v-4e17ac2d></div> <h4 class="slp-mt-24 slp-text-heading4-bold header-anchor" data-v-19cf63b5 data-v-4e17ac2d>Fuzz Testing<a href="#fuzz-testing" aria-hidden="true" class="header-anchor" data-v-19cf63b5 data-v-4e17ac2d><div role="img" aria-hidden="true" alt="Anchor Icon" class="slp-icon slp-ml-16 slp-icon--color-text-link-100" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-4e17ac2d><!----><div data-v-e356681a><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><path fill="currentColor" fill-rule="evenodd" d="M9.683 6.676l-.047-.048C8.27 5.26 6.07 5.243 4.726 6.588l-2.29 2.29c-1.344 1.344-1.328 3.544.04 4.91 1.366 1.368 3.564 1.385 4.908.04l1.753-1.752c-.695.074-1.457-.078-2.176-.444L5.934 12.66c-.634.634-1.67.625-2.312-.017a1.637 1.637 0 01-.017-2.312L6.035 7.9c.634-.634 1.67-.625 2.312.017.024.024.048.05.07.075l.003-.002c.36.36.943.366 1.3.01a.922.922 0 00-.01-1.3l-.027-.024zM6.58 9.586l.048.05c1.367 1.366 3.565 1.384 4.91.04l2.29-2.292c1.344-1.343 1.328-3.542-.04-4.91-1.366-1.366-3.564-1.384-4.908-.04L7.127 4.187c.695-.074 1.457.078 2.176.444l1.028-1.027c.635-.634 1.67-.624 2.313.017.643.644.652 1.678.018 2.312l-2.43 2.432c-.635.634-1.67.624-2.313-.018a1.636 1.636 0 01-.07-.075l-.003.004a.918.918 0 00-1.3-.01.922.922 0 00.01 1.3c.01.007.018.015.027.023z"/></svg></div></div></a><!----></h4> <p class="slp-my-24 link-group__description slp-text-body1" data-v-19cf63b5 data-v-4e17ac2d>Sends random inputs to an instrumented version of your application in an effort to cause unexpected behavior in order to identify a bug that needs to be addressed. Helps you discover bugs and potential security issues that other QA processes may miss.<!----></p> <div class="slp-row slp-mb-32" data-v-2d4c763f data-v-4e17ac2d><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/editor_extensions/visual_studio_code/#download-the-extension" data-ga-name="Security Scanning IDE integration" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Security Scanning IDE integration </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/coverage_fuzzing/" data-ga-name="Coverage-guided Fuzz Testing" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Coverage-guided Fuzz Testing </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div></div></div></div><div id="dast" name="solutions-platform-link-group" class="link-group slp-mt-32" data-v-4e17ac2d data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-4e17ac2d><div class="gradient-header" data-v-db4b02a6 data-v-4e17ac2d></div> <h4 class="slp-mt-24 slp-text-heading4-bold header-anchor" data-v-19cf63b5 data-v-4e17ac2d>DAST<a href="#dast" aria-hidden="true" class="header-anchor" data-v-19cf63b5 data-v-4e17ac2d><div role="img" aria-hidden="true" alt="Anchor Icon" class="slp-icon slp-ml-16 slp-icon--color-text-link-100" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-4e17ac2d><!----><div data-v-e356681a><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><path fill="currentColor" fill-rule="evenodd" d="M9.683 6.676l-.047-.048C8.27 5.26 6.07 5.243 4.726 6.588l-2.29 2.29c-1.344 1.344-1.328 3.544.04 4.91 1.366 1.368 3.564 1.385 4.908.04l1.753-1.752c-.695.074-1.457-.078-2.176-.444L5.934 12.66c-.634.634-1.67.625-2.312-.017a1.637 1.637 0 01-.017-2.312L6.035 7.9c.634-.634 1.67-.625 2.312.017.024.024.048.05.07.075l.003-.002c.36.36.943.366 1.3.01a.922.922 0 00-.01-1.3l-.027-.024zM6.58 9.586l.048.05c1.367 1.366 3.565 1.384 4.91.04l2.29-2.292c1.344-1.343 1.328-3.542-.04-4.91-1.366-1.366-3.564-1.384-4.908-.04L7.127 4.187c.695-.074 1.457.078 2.176.444l1.028-1.027c.635-.634 1.67-.624 2.313.017.643.644.652 1.678.018 2.312l-2.43 2.432c-.635.634-1.67.624-2.313-.018a1.636 1.636 0 01-.07-.075l-.003.004a.918.918 0 00-1.3-.01.922.922 0 00.01 1.3c.01.007.018.015.027.023z"/></svg></div></div></a><!----></h4> <p class="slp-my-24 link-group__description slp-text-body1" data-v-19cf63b5 data-v-4e17ac2d>Runs automated penetration tests to find vulnerabilities in web applications and APIs as they are running. DAST can run live attacks against a Review App, an externally deployed application, or an active API. Scans can be run for every merge request, on a schedule, or even on-demand. DAST supports user inputted HTTP credentials to test private areas of your application. Vulnerabilities, additional data, and solutions are shown in-line with every merge request. Scanner results are presented as a single report.<!----></p> <div class="slp-row slp-mb-32" data-v-2d4c763f data-v-4e17ac2d><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/editor_extensions/visual_studio_code/#download-the-extension" data-ga-name="Security Scanning IDE integration" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Security Scanning IDE integration </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/dast/" data-ga-name="Dynamic Application Security Testing" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Dynamic Application Security Testing </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/dast/#on-demand-scans" data-ga-name="On-demand DAST" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> On-demand DAST </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/dast/#site-profile" data-ga-name="Site and Scanner profiles for On-demand DAST scans" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Site and Scanner profiles for On-demand DAST scans </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/dast/#configure-dast-using-the-ui" data-ga-name="DAST Configuration UI" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> DAST Configuration UI </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/dast/#schedule-an-on-demand-scan" data-ga-name="Scheduling On-demand DAST scans" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Scheduling On-demand DAST scans </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/dast/" data-ga-name="DAST" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> DAST </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div></div></div></div><div id="code-quality" name="solutions-platform-link-group" class="link-group slp-mt-32" data-v-4e17ac2d data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-4e17ac2d><div class="gradient-header" data-v-db4b02a6 data-v-4e17ac2d></div> <h4 class="slp-mt-24 slp-text-heading4-bold header-anchor" data-v-19cf63b5 data-v-4e17ac2d>Code Quality<a href="#code-quality" aria-hidden="true" class="header-anchor" data-v-19cf63b5 data-v-4e17ac2d><div role="img" aria-hidden="true" alt="Anchor Icon" class="slp-icon slp-ml-16 slp-icon--color-text-link-100" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-4e17ac2d><!----><div data-v-e356681a><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><path fill="currentColor" fill-rule="evenodd" d="M9.683 6.676l-.047-.048C8.27 5.26 6.07 5.243 4.726 6.588l-2.29 2.29c-1.344 1.344-1.328 3.544.04 4.91 1.366 1.368 3.564 1.385 4.908.04l1.753-1.752c-.695.074-1.457-.078-2.176-.444L5.934 12.66c-.634.634-1.67.625-2.312-.017a1.637 1.637 0 01-.017-2.312L6.035 7.9c.634-.634 1.67-.625 2.312.017.024.024.048.05.07.075l.003-.002c.36.36.943.366 1.3.01a.922.922 0 00-.01-1.3l-.027-.024zM6.58 9.586l.048.05c1.367 1.366 3.565 1.384 4.91.04l2.29-2.292c1.344-1.343 1.328-3.542-.04-4.91-1.366-1.366-3.564-1.384-4.908-.04L7.127 4.187c.695-.074 1.457.078 2.176.444l1.028-1.027c.635-.634 1.67-.624 2.313.017.643.644.652 1.678.018 2.312l-2.43 2.432c-.635.634-1.67.624-2.313-.018a1.636 1.636 0 01-.07-.075l-.003.004a.918.918 0 00-1.3-.01.922.922 0 00.01 1.3c.01.007.018.015.027.023z"/></svg></div></div></a><!----></h4> <p class="slp-my-24 link-group__description slp-text-body1" data-v-19cf63b5 data-v-4e17ac2d>Analyzes your source code quality and complexity. This helps keep your project’s code simple, readable, and easier to maintain.<!----></p> <div class="slp-row slp-mb-32" data-v-2d4c763f data-v-4e17ac2d><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/ci/testing/code_quality.html#merge-request-widget" data-ga-name="Code Quality MR Widget" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Code Quality MR Widget </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/ci/testing/code_quality.html#output" data-ga-name="Code Quality Reports" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Code Quality Reports </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/ci/testing/code_quality.html#pipeline-details-view" data-ga-name="Code Quality violation notices in MR diffs" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Code Quality violation notices in MR diffs </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div></div></div></div><div id="secret-detection" name="solutions-platform-link-group" class="link-group slp-mt-32" data-v-4e17ac2d data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-4e17ac2d><div class="gradient-header" data-v-db4b02a6 data-v-4e17ac2d></div> <h4 class="slp-mt-24 slp-text-heading4-bold header-anchor" data-v-19cf63b5 data-v-4e17ac2d>Secret Detection<a href="#secret-detection" aria-hidden="true" class="header-anchor" data-v-19cf63b5 data-v-4e17ac2d><div role="img" aria-hidden="true" alt="Anchor Icon" class="slp-icon slp-ml-16 slp-icon--color-text-link-100" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-4e17ac2d><!----><div data-v-e356681a><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><path fill="currentColor" fill-rule="evenodd" d="M9.683 6.676l-.047-.048C8.27 5.26 6.07 5.243 4.726 6.588l-2.29 2.29c-1.344 1.344-1.328 3.544.04 4.91 1.366 1.368 3.564 1.385 4.908.04l1.753-1.752c-.695.074-1.457-.078-2.176-.444L5.934 12.66c-.634.634-1.67.625-2.312-.017a1.637 1.637 0 01-.017-2.312L6.035 7.9c.634-.634 1.67-.625 2.312.017.024.024.048.05.07.075l.003-.002c.36.36.943.366 1.3.01a.922.922 0 00-.01-1.3l-.027-.024zM6.58 9.586l.048.05c1.367 1.366 3.565 1.384 4.91.04l2.29-2.292c1.344-1.343 1.328-3.542-.04-4.91-1.366-1.366-3.564-1.384-4.908-.04L7.127 4.187c.695-.074 1.457.078 2.176.444l1.028-1.027c.635-.634 1.67-.624 2.313.017.643.644.652 1.678.018 2.312l-2.43 2.432c-.635.634-1.67.624-2.313-.018a1.636 1.636 0 01-.07-.075l-.003.004a.918.918 0 00-1.3-.01.922.922 0 00.01 1.3c.01.007.018.015.027.023z"/></svg></div></div></a><!----></h4> <p class="slp-my-24 link-group__description slp-text-body1" data-v-19cf63b5 data-v-4e17ac2d>Scans your repository to help prevent your secrets from being exposed. Secret Detection scanning works on all text files, regardless of the language or framework used. Code pushed to a remote Git branch can be rejected if a secret is detected.<!----></p> <div class="slp-row slp-mb-32" data-v-2d4c763f data-v-4e17ac2d><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/editor_extensions/visual_studio_code/#download-the-extension" data-ga-name="Security Scanning IDE integration" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Security Scanning IDE integration </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/secret_detection/" data-ga-name="Secret Detection" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Secret Detection </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/secret_detection/pipeline/index.html#customize-analyzer-rulesets" data-ga-name="Custom Rulesets for Secret Detection" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Custom Rulesets for Secret Detection </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/secret_detection/#full-history-secret-scan" data-ga-name="Full Git History Secret Detection" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Full Git History Secret Detection </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/secret_detection/automatic_response/" data-ga-name="Automatic Response to Leaked Secrets" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Automatic Response to Leaked Secrets </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/secret_detection/pre_receive/" data-ga-name="Secret Push Protection (Beta)" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Secret Push Protection (Beta) </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div></div></div></div><div id="sast" name="solutions-platform-link-group" class="link-group slp-mt-32" data-v-4e17ac2d data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-4e17ac2d><div class="gradient-header" data-v-db4b02a6 data-v-4e17ac2d></div> <h4 class="slp-mt-24 slp-text-heading4-bold header-anchor" data-v-19cf63b5 data-v-4e17ac2d>SAST<a href="#sast" aria-hidden="true" class="header-anchor" data-v-19cf63b5 data-v-4e17ac2d><div role="img" aria-hidden="true" alt="Anchor Icon" class="slp-icon slp-ml-16 slp-icon--color-text-link-100" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-4e17ac2d><!----><div data-v-e356681a><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><path fill="currentColor" fill-rule="evenodd" d="M9.683 6.676l-.047-.048C8.27 5.26 6.07 5.243 4.726 6.588l-2.29 2.29c-1.344 1.344-1.328 3.544.04 4.91 1.366 1.368 3.564 1.385 4.908.04l1.753-1.752c-.695.074-1.457-.078-2.176-.444L5.934 12.66c-.634.634-1.67.625-2.312-.017a1.637 1.637 0 01-.017-2.312L6.035 7.9c.634-.634 1.67-.625 2.312.017.024.024.048.05.07.075l.003-.002c.36.36.943.366 1.3.01a.922.922 0 00-.01-1.3l-.027-.024zM6.58 9.586l.048.05c1.367 1.366 3.565 1.384 4.91.04l2.29-2.292c1.344-1.343 1.328-3.542-.04-4.91-1.366-1.366-3.564-1.384-4.908-.04L7.127 4.187c.695-.074 1.457.078 2.176.444l1.028-1.027c.635-.634 1.67-.624 2.313.017.643.644.652 1.678.018 2.312l-2.43 2.432c-.635.634-1.67.624-2.313-.018a1.636 1.636 0 01-.07-.075l-.003.004a.918.918 0 00-1.3-.01.922.922 0 00.01 1.3c.01.007.018.015.027.023z"/></svg></div></div></a><!----></h4> <p class="slp-my-24 link-group__description slp-text-body1" data-v-19cf63b5 data-v-4e17ac2d>Scans your application source code and binaries to spot potential vulnerabilities before deployment. SAST supports scanning a variety of different programming languages and automatically chooses the right analyzer even if your project uses more than one language. Vulnerabilities, additional data, and solutions are shown in-line with every merge request. Scanner results are collected and presented as a single report.<!----></p> <div class="slp-row slp-mb-32" data-v-2d4c763f data-v-4e17ac2d><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/sast/" data-ga-name="Static Application Security Testing" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Static Application Security Testing </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/configuration/" data-ga-name="Configuration UI" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Configuration UI </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/editor_extensions/visual_studio_code/#download-the-extension" data-ga-name="Security Scanning IDE integration" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Security Scanning IDE integration </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/sast/#custom-rulesets" data-ga-name="Custom Rulesets for SAST" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Custom Rulesets for SAST </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/iac_scanning/" data-ga-name="Infrastructure as Code (IaC) Security Scanning" data-ga-location="solutions" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Infrastructure as Code (IaC) Security Scanning </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div></div></div></div><div id="vulnerability-explanation" name="solutions-platform-link-group" class="link-group slp-mt-32" data-v-4e17ac2d data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-4e17ac2d><div class="gradient-header" data-v-db4b02a6 data-v-4e17ac2d></div> <h4 class="slp-mt-24 slp-text-heading4-bold header-anchor" data-v-19cf63b5 data-v-4e17ac2d>Vulnerability Explanation<a href="#vulnerability-explanation" aria-hidden="true" class="header-anchor" data-v-19cf63b5 data-v-4e17ac2d><div role="img" aria-hidden="true" alt="Anchor Icon" class="slp-icon slp-ml-16 slp-icon--color-text-link-100" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-4e17ac2d><!----><div data-v-e356681a><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><path fill="currentColor" fill-rule="evenodd" d="M9.683 6.676l-.047-.048C8.27 5.26 6.07 5.243 4.726 6.588l-2.29 2.29c-1.344 1.344-1.328 3.544.04 4.91 1.366 1.368 3.564 1.385 4.908.04l1.753-1.752c-.695.074-1.457-.078-2.176-.444L5.934 12.66c-.634.634-1.67.625-2.312-.017a1.637 1.637 0 01-.017-2.312L6.035 7.9c.634-.634 1.67-.625 2.312.017.024.024.048.05.07.075l.003-.002c.36.36.943.366 1.3.01a.922.922 0 00-.01-1.3l-.027-.024zM6.58 9.586l.048.05c1.367 1.366 3.565 1.384 4.91.04l2.29-2.292c1.344-1.343 1.328-3.542-.04-4.91-1.366-1.366-3.564-1.384-4.908-.04L7.127 4.187c.695-.074 1.457.078 2.176.444l1.028-1.027c.635-.634 1.67-.624 2.313.017.643.644.652 1.678.018 2.312l-2.43 2.432c-.635.634-1.67.624-2.313-.018a1.636 1.636 0 01-.07-.075l-.003.004a.918.918 0 00-1.3-.01.922.922 0 00.01 1.3c.01.007.018.015.027.023z"/></svg></div></div></a><!----></h4> <p class="slp-my-24 link-group__description slp-text-body1" data-v-19cf63b5 data-v-4e17ac2d>Helps you remediate vulnerabilities more efficiently, boost your skills, and write more secure code.<!----></p> <div class="slp-row slp-mb-32" data-v-2d4c763f data-v-4e17ac2d><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/vulnerabilities/index.html#explaining-a-vulnerability" data-ga-name="Vulnerability Explanation" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Vulnerability Explanation </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div></div></div></div><div id="vulnerability-resolution" name="solutions-platform-link-group" class="link-group slp-mt-32" data-v-4e17ac2d data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-4e17ac2d><div class="gradient-header" data-v-db4b02a6 data-v-4e17ac2d></div> <h4 class="slp-mt-24 slp-text-heading4-bold header-anchor" data-v-19cf63b5 data-v-4e17ac2d>Vulnerability Resolution<a href="#vulnerability-resolution" aria-hidden="true" class="header-anchor" data-v-19cf63b5 data-v-4e17ac2d><div role="img" aria-hidden="true" alt="Anchor Icon" class="slp-icon slp-ml-16 slp-icon--color-text-link-100" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-4e17ac2d><!----><div data-v-e356681a><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><path fill="currentColor" fill-rule="evenodd" d="M9.683 6.676l-.047-.048C8.27 5.26 6.07 5.243 4.726 6.588l-2.29 2.29c-1.344 1.344-1.328 3.544.04 4.91 1.366 1.368 3.564 1.385 4.908.04l1.753-1.752c-.695.074-1.457-.078-2.176-.444L5.934 12.66c-.634.634-1.67.625-2.312-.017a1.637 1.637 0 01-.017-2.312L6.035 7.9c.634-.634 1.67-.625 2.312.017.024.024.048.05.07.075l.003-.002c.36.36.943.366 1.3.01a.922.922 0 00-.01-1.3l-.027-.024zM6.58 9.586l.048.05c1.367 1.366 3.565 1.384 4.91.04l2.29-2.292c1.344-1.343 1.328-3.542-.04-4.91-1.366-1.366-3.564-1.384-4.908-.04L7.127 4.187c.695-.074 1.457.078 2.176.444l1.028-1.027c.635-.634 1.67-.624 2.313.017.643.644.652 1.678.018 2.312l-2.43 2.432c-.635.634-1.67.624-2.313-.018a1.636 1.636 0 01-.07-.075l-.003.004a.918.918 0 00-1.3-.01.922.922 0 00.01 1.3c.01.007.018.015.027.023z"/></svg></div></div></a><!----></h4> <p class="slp-my-24 link-group__description slp-text-body1" data-v-19cf63b5 data-v-4e17ac2d>Generates a merge request containing the changes required to mitigate a vulnerability.<!----></p> <div class="slp-row slp-mb-32" data-v-2d4c763f data-v-4e17ac2d><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/vulnerabilities/index.html#vulnerability-resolution" data-ga-name="Vulnerability Resolution" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Vulnerability Resolution </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div></div></div></div><div id="release-evidence" name="solutions-platform-link-group" class="link-group slp-mt-32" data-v-4e17ac2d data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-4e17ac2d><div class="gradient-header" data-v-db4b02a6 data-v-4e17ac2d></div> <h4 class="slp-mt-24 slp-text-heading4-bold header-anchor" data-v-19cf63b5 data-v-4e17ac2d>Release Evidence<a href="#release-evidence" aria-hidden="true" class="header-anchor" data-v-19cf63b5 data-v-4e17ac2d><div role="img" aria-hidden="true" alt="Anchor Icon" class="slp-icon slp-ml-16 slp-icon--color-text-link-100" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-4e17ac2d><!----><div data-v-e356681a><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><path fill="currentColor" fill-rule="evenodd" d="M9.683 6.676l-.047-.048C8.27 5.26 6.07 5.243 4.726 6.588l-2.29 2.29c-1.344 1.344-1.328 3.544.04 4.91 1.366 1.368 3.564 1.385 4.908.04l1.753-1.752c-.695.074-1.457-.078-2.176-.444L5.934 12.66c-.634.634-1.67.625-2.312-.017a1.637 1.637 0 01-.017-2.312L6.035 7.9c.634-.634 1.67-.625 2.312.017.024.024.048.05.07.075l.003-.002c.36.36.943.366 1.3.01a.922.922 0 00-.01-1.3l-.027-.024zM6.58 9.586l.048.05c1.367 1.366 3.565 1.384 4.91.04l2.29-2.292c1.344-1.343 1.328-3.542-.04-4.91-1.366-1.366-3.564-1.384-4.908-.04L7.127 4.187c.695-.074 1.457.078 2.176.444l1.028-1.027c.635-.634 1.67-.624 2.313.017.643.644.652 1.678.018 2.312l-2.43 2.432c-.635.634-1.67.624-2.313-.018a1.636 1.636 0 01-.07-.075l-.003.004a.918.918 0 00-1.3-.01.922.922 0 00.01 1.3c.01.007.018.015.027.023z"/></svg></div></div></a><!----></h4> <p class="slp-my-24 link-group__description slp-text-body1" data-v-19cf63b5 data-v-4e17ac2d>Release Evidence provides assurances and evidence collection that are necessary for you to trust the changes you're delivering. When a release is created, GitLab takes a snapshot of relevant release data as evidence that it occurred.<!----></p> <div class="slp-row slp-mb-32" data-v-2d4c763f data-v-4e17ac2d><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/project/releases/#release-evidence" data-ga-name="release evidence" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Release Evidence </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div></div></div></div><div id="compliance-management" name="solutions-platform-link-group" class="link-group slp-mt-32" data-v-4e17ac2d data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-4e17ac2d><div class="gradient-header" data-v-db4b02a6 data-v-4e17ac2d></div> <h4 class="slp-mt-24 slp-text-heading4-bold header-anchor" data-v-19cf63b5 data-v-4e17ac2d>Compliance Management<a href="#compliance-management" aria-hidden="true" class="header-anchor" data-v-19cf63b5 data-v-4e17ac2d><div role="img" aria-hidden="true" alt="Anchor Icon" class="slp-icon slp-ml-16 slp-icon--color-text-link-100" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-4e17ac2d><!----><div data-v-e356681a><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><path fill="currentColor" fill-rule="evenodd" d="M9.683 6.676l-.047-.048C8.27 5.26 6.07 5.243 4.726 6.588l-2.29 2.29c-1.344 1.344-1.328 3.544.04 4.91 1.366 1.368 3.564 1.385 4.908.04l1.753-1.752c-.695.074-1.457-.078-2.176-.444L5.934 12.66c-.634.634-1.67.625-2.312-.017a1.637 1.637 0 01-.017-2.312L6.035 7.9c.634-.634 1.67-.625 2.312.017.024.024.048.05.07.075l.003-.002c.36.36.943.366 1.3.01a.922.922 0 00-.01-1.3l-.027-.024zM6.58 9.586l.048.05c1.367 1.366 3.565 1.384 4.91.04l2.29-2.292c1.344-1.343 1.328-3.542-.04-4.91-1.366-1.366-3.564-1.384-4.908-.04L7.127 4.187c.695-.074 1.457.078 2.176.444l1.028-1.027c.635-.634 1.67-.624 2.313.017.643.644.652 1.678.018 2.312l-2.43 2.432c-.635.634-1.67.624-2.313-.018a1.636 1.636 0 01-.07-.075l-.003.004a.918.918 0 00-1.3-.01.922.922 0 00.01 1.3c.01.007.018.015.027.023z"/></svg></div></div></a><!----></h4> <p class="slp-my-24 link-group__description slp-text-body1" data-v-19cf63b5 data-v-4e17ac2d>Compliance Management provides customers with the tools necessary to ensure and manage their compliance programs. <!----></p> <div class="slp-row slp-mb-32" data-v-2d4c763f data-v-4e17ac2d><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/group/compliance_pipelines.html" data-ga-name="Compliance pipeline configuration" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Compliance pipeline configuration </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/group/compliance_frameworks.html" data-ga-name="Custom compliance frameworks" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Custom compliance frameworks </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/compliance/compliance_center/compliance_frameworks_report.html" data-ga-name="Compliance frameworks report" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Compliance frameworks report </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/administration/appearance.html" data-ga-name="Customizable system header and footer messages" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Customizable system header and footer messages </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/integration/jira/issues.html#require-associated-jira-issue-for-merge-requests-to-be-merged" data-ga-name="Require a Jira issue before merging code" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Require a Jira issue before merging code </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/compliance/compliance_center/#standards-adherence-dashboard" data-ga-name="Compliance standards adherence report" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Compliance standards adherence report </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/compliance/compliance_center/compliance_violations_report.html" data-ga-name="Violations report" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Violations report </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/project/merge_requests/approvals/settings" data-ga-name="Enforce merge request approval settings" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Enforce merge request approval settings </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div></div></div></div><div id="audit-events" name="solutions-platform-link-group" class="link-group slp-mt-32" data-v-4e17ac2d data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-4e17ac2d><div class="gradient-header" data-v-db4b02a6 data-v-4e17ac2d></div> <h4 class="slp-mt-24 slp-text-heading4-bold header-anchor" data-v-19cf63b5 data-v-4e17ac2d>Audit Events<a href="#audit-events" aria-hidden="true" class="header-anchor" data-v-19cf63b5 data-v-4e17ac2d><div role="img" aria-hidden="true" alt="Anchor Icon" class="slp-icon slp-ml-16 slp-icon--color-text-link-100" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-4e17ac2d><!----><div data-v-e356681a><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><path fill="currentColor" fill-rule="evenodd" d="M9.683 6.676l-.047-.048C8.27 5.26 6.07 5.243 4.726 6.588l-2.29 2.29c-1.344 1.344-1.328 3.544.04 4.91 1.366 1.368 3.564 1.385 4.908.04l1.753-1.752c-.695.074-1.457-.078-2.176-.444L5.934 12.66c-.634.634-1.67.625-2.312-.017a1.637 1.637 0 01-.017-2.312L6.035 7.9c.634-.634 1.67-.625 2.312.017.024.024.048.05.07.075l.003-.002c.36.36.943.366 1.3.01a.922.922 0 00-.01-1.3l-.027-.024zM6.58 9.586l.048.05c1.367 1.366 3.565 1.384 4.91.04l2.29-2.292c1.344-1.343 1.328-3.542-.04-4.91-1.366-1.366-3.564-1.384-4.908-.04L7.127 4.187c.695-.074 1.457.078 2.176.444l1.028-1.027c.635-.634 1.67-.624 2.313.017.643.644.652 1.678.018 2.312l-2.43 2.432c-.635.634-1.67.624-2.313-.018a1.636 1.636 0 01-.07-.075l-.003.004a.918.918 0 00-1.3-.01.922.922 0 00.01 1.3c.01.007.018.015.027.023z"/></svg></div></div></a><!----></h4> <p class="slp-my-24 link-group__description slp-text-body1" data-v-19cf63b5 data-v-4e17ac2d>Compliance Management provides customers with the tools necessary to ensure and manage their compliance programs. <!----></p> <div class="slp-row slp-mb-32" data-v-2d4c763f data-v-4e17ac2d><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/administration/audit_event_reports.html" data-ga-name="audit events report" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Audit events report </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/administration/audit_event_reports.html#exporting-audit-events" data-ga-name="Audit events CSV export" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Audit events CSV export </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/compliance/compliance_center/compliance_violations_report.html#chain-of-custody-report" data-ga-name="Chain of custody report" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Chain of custody report </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/administration/auditor_users" data-ga-name="Auditor access" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Auditor access </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/administration/audit_event_streaming/" data-ga-name="Streaming Audit Events" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Streaming Audit Events </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div></div></div></div><div id="software-bill-of-materials" name="solutions-platform-link-group" class="link-group slp-mt-32" data-v-4e17ac2d data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-4e17ac2d><div class="gradient-header" data-v-db4b02a6 data-v-4e17ac2d></div> <h4 class="slp-mt-24 slp-text-heading4-bold header-anchor" data-v-19cf63b5 data-v-4e17ac2d>Software Bill of Materials<a href="#software-bill-of-materials" aria-hidden="true" class="header-anchor" data-v-19cf63b5 data-v-4e17ac2d><div role="img" aria-hidden="true" alt="Anchor Icon" class="slp-icon slp-ml-16 slp-icon--color-text-link-100" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-4e17ac2d><!----><div data-v-e356681a><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><path fill="currentColor" fill-rule="evenodd" d="M9.683 6.676l-.047-.048C8.27 5.26 6.07 5.243 4.726 6.588l-2.29 2.29c-1.344 1.344-1.328 3.544.04 4.91 1.366 1.368 3.564 1.385 4.908.04l1.753-1.752c-.695.074-1.457-.078-2.176-.444L5.934 12.66c-.634.634-1.67.625-2.312-.017a1.637 1.637 0 01-.017-2.312L6.035 7.9c.634-.634 1.67-.625 2.312.017.024.024.048.05.07.075l.003-.002c.36.36.943.366 1.3.01a.922.922 0 00-.01-1.3l-.027-.024zM6.58 9.586l.048.05c1.367 1.366 3.565 1.384 4.91.04l2.29-2.292c1.344-1.343 1.328-3.542-.04-4.91-1.366-1.366-3.564-1.384-4.908-.04L7.127 4.187c.695-.074 1.457.078 2.176.444l1.028-1.027c.635-.634 1.67-.624 2.313.017.643.644.652 1.678.018 2.312l-2.43 2.432c-.635.634-1.67.624-2.313-.018a1.636 1.636 0 01-.07-.075l-.003.004a.918.918 0 00-1.3-.01.922.922 0 00.01 1.3c.01.007.018.015.027.023z"/></svg></div></div></a><!----></h4> <p class="slp-my-24 link-group__description slp-text-body1" data-v-19cf63b5 data-v-4e17ac2d>GitLab allows you to secure your software supply chain including push rules, code scanning, SBOM management, and enforcement of compliance policies.<!----></p> <div class="slp-row slp-mb-32" data-v-2d4c763f data-v-4e17ac2d><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/dependency_list/" data-ga-name="Software Bill of Materials" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Software Bill of Materials </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div></div></div></div><div id="dependency-management " name="solutions-platform-link-group" class="link-group slp-mt-32" data-v-4e17ac2d data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-4e17ac2d><div class="gradient-header" data-v-db4b02a6 data-v-4e17ac2d></div> <h4 class="slp-mt-24 slp-text-heading4-bold header-anchor" data-v-19cf63b5 data-v-4e17ac2d>Dependency Management <a href="#dependency-management" aria-hidden="true" class="header-anchor" data-v-19cf63b5 data-v-4e17ac2d><div role="img" aria-hidden="true" alt="Anchor Icon" class="slp-icon slp-ml-16 slp-icon--color-text-link-100" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-4e17ac2d><!----><div data-v-e356681a><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><path fill="currentColor" fill-rule="evenodd" d="M9.683 6.676l-.047-.048C8.27 5.26 6.07 5.243 4.726 6.588l-2.29 2.29c-1.344 1.344-1.328 3.544.04 4.91 1.366 1.368 3.564 1.385 4.908.04l1.753-1.752c-.695.074-1.457-.078-2.176-.444L5.934 12.66c-.634.634-1.67.625-2.312-.017a1.637 1.637 0 01-.017-2.312L6.035 7.9c.634-.634 1.67-.625 2.312.017.024.024.048.05.07.075l.003-.002c.36.36.943.366 1.3.01a.922.922 0 00-.01-1.3l-.027-.024zM6.58 9.586l.048.05c1.367 1.366 3.565 1.384 4.91.04l2.29-2.292c1.344-1.343 1.328-3.542-.04-4.91-1.366-1.366-3.564-1.384-4.908-.04L7.127 4.187c.695-.074 1.457.078 2.176.444l1.028-1.027c.635-.634 1.67-.624 2.313.017.643.644.652 1.678.018 2.312l-2.43 2.432c-.635.634-1.67.624-2.313-.018a1.636 1.636 0 01-.07-.075l-.003.004a.918.918 0 00-1.3-.01.922.922 0 00.01 1.3c.01.007.018.015.027.023z"/></svg></div></div></a><!----></h4> <p class="slp-my-24 link-group__description slp-text-body1" data-v-19cf63b5 data-v-4e17ac2d>Dependency Management allows users to review project/group dependencies and key details about those dependencies, including their vulnerabilities, licenses, and packager. <!----></p> <div class="slp-row slp-mb-32" data-v-2d4c763f data-v-4e17ac2d><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/dependency_list/" data-ga-name="Dependency Management" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Dependency Management </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div></div></div></div><div id="vulnerability-management " name="solutions-platform-link-group" class="link-group slp-mt-32" data-v-4e17ac2d data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-4e17ac2d><div class="gradient-header" data-v-db4b02a6 data-v-4e17ac2d></div> <h4 class="slp-mt-24 slp-text-heading4-bold header-anchor" data-v-19cf63b5 data-v-4e17ac2d>Vulnerability Management <a href="#vulnerability-management" aria-hidden="true" class="header-anchor" data-v-19cf63b5 data-v-4e17ac2d><div role="img" aria-hidden="true" alt="Anchor Icon" class="slp-icon slp-ml-16 slp-icon--color-text-link-100" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-4e17ac2d><!----><div data-v-e356681a><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><path fill="currentColor" fill-rule="evenodd" d="M9.683 6.676l-.047-.048C8.27 5.26 6.07 5.243 4.726 6.588l-2.29 2.29c-1.344 1.344-1.328 3.544.04 4.91 1.366 1.368 3.564 1.385 4.908.04l1.753-1.752c-.695.074-1.457-.078-2.176-.444L5.934 12.66c-.634.634-1.67.625-2.312-.017a1.637 1.637 0 01-.017-2.312L6.035 7.9c.634-.634 1.67-.625 2.312.017.024.024.048.05.07.075l.003-.002c.36.36.943.366 1.3.01a.922.922 0 00-.01-1.3l-.027-.024zM6.58 9.586l.048.05c1.367 1.366 3.565 1.384 4.91.04l2.29-2.292c1.344-1.343 1.328-3.542-.04-4.91-1.366-1.366-3.564-1.384-4.908-.04L7.127 4.187c.695-.074 1.457.078 2.176.444l1.028-1.027c.635-.634 1.67-.624 2.313.017.643.644.652 1.678.018 2.312l-2.43 2.432c-.635.634-1.67.624-2.313-.018a1.636 1.636 0 01-.07-.075l-.003.004a.918.918 0 00-1.3-.01.922.922 0 00.01 1.3c.01.007.018.015.027.023z"/></svg></div></div></a><!----></h4> <p class="slp-my-24 link-group__description slp-text-body1" data-v-19cf63b5 data-v-4e17ac2d>Vulnerability Management enables collaboration between security teams by providing a uniform interface to assess the security posture of their applications. Security teams can view, triage, trend, track, and resolve vulnerabilities detected by the various GitLab scanners. <!----></p> <div class="slp-row slp-mb-32" data-v-2d4c763f data-v-4e17ac2d><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/editor_extensions/visual_studio_code/#download-the-extension" data-ga-name="Security Scanning IDE integration" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Security Scanning IDE integration </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://about.gitlab.com/direction/govern/threat_insights/vulnerability_management/" data-ga-name="Vulnerability Management" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Vulnerability Management </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/#interacting-with-the-vulnerabilities" data-ga-name="Standalone Vulnerability Objects" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Standalone Vulnerability Objects </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/vulnerability_report/" data-ga-name="Vulnerability Reports" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Vulnerability Reports </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/security_dashboard/index.html" data-ga-name="Security Dashboards" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Security Dashboards </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/vulnerabilities/#create-a-gitlab-issue-for-a-vulnerability" data-ga-name="Create Jira issues from vulnerabilities" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Create Jira issues from vulnerabilities </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://about.gitlab.com/releases/2020/10/22/gitlab-13-5-released/#improved-merge-request-experience-for-security-scans" data-ga-name="Security Scan summary in Merge Requests" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Security Scan summary in Merge Requests </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/vulnerabilities/#enable-security-training-for-vulnerabilities" data-ga-name="Integrated security training" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Integrated security training </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div></div></div></div><div id="security-policy-management " name="solutions-platform-link-group" class="link-group slp-mt-32" data-v-4e17ac2d data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-4e17ac2d><div class="gradient-header" data-v-db4b02a6 data-v-4e17ac2d></div> <h4 class="slp-mt-24 slp-text-heading4-bold header-anchor" data-v-19cf63b5 data-v-4e17ac2d>Security Policy Management <a href="#security-policy-management " aria-hidden="true" class="header-anchor" data-v-19cf63b5 data-v-4e17ac2d><div role="img" aria-hidden="true" alt="Anchor Icon" class="slp-icon slp-ml-16 slp-icon--color-text-link-100" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-4e17ac2d><!----><div data-v-e356681a><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><path fill="currentColor" fill-rule="evenodd" d="M9.683 6.676l-.047-.048C8.27 5.26 6.07 5.243 4.726 6.588l-2.29 2.29c-1.344 1.344-1.328 3.544.04 4.91 1.366 1.368 3.564 1.385 4.908.04l1.753-1.752c-.695.074-1.457-.078-2.176-.444L5.934 12.66c-.634.634-1.67.625-2.312-.017a1.637 1.637 0 01-.017-2.312L6.035 7.9c.634-.634 1.67-.625 2.312.017.024.024.048.05.07.075l.003-.002c.36.36.943.366 1.3.01a.922.922 0 00-.01-1.3l-.027-.024zM6.58 9.586l.048.05c1.367 1.366 3.565 1.384 4.91.04l2.29-2.292c1.344-1.343 1.328-3.542-.04-4.91-1.366-1.366-3.564-1.384-4.908-.04L7.127 4.187c.695-.074 1.457.078 2.176.444l1.028-1.027c.635-.634 1.67-.624 2.313.017.643.644.652 1.678.018 2.312l-2.43 2.432c-.635.634-1.67.624-2.313-.018a1.636 1.636 0 01-.07-.075l-.003.004a.918.918 0 00-1.3-.01.922.922 0 00.01 1.3c.01.007.018.015.027.023z"/></svg></div></div></a><!----></h4> <p class="slp-my-24 link-group__description slp-text-body1" data-v-19cf63b5 data-v-4e17ac2d>Unified security policy management provides security and compliance teams with a way to enforce controls across their organization for all of GitLab's scanners and security technologies. <!----></p> <div class="slp-row slp-mb-32" data-v-2d4c763f data-v-4e17ac2d><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/policies" data-ga-name="Security Policies" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Security Policies </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/index.html#security-approvals-in-merge-requests" data-ga-name="Security Approvals" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Security Approvals </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/compliance/license_approval_policies.html" data-ga-name="License Approvals" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> License Approvals </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/policies/scan-result-policies.html" data-ga-name="Merge Request Approval Policies" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Merge Request Approval Policies </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/project/merge_requests/status_checks.html" data-ga-name="External status checks" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> External status checks </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/policies/scan-execution-policies.html#security-policy-scopes" data-ga-name="Security Policy Scopes" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> Security Policy Scopes </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div></div></div></div><div id="gitlab-advisory-database" name="solutions-platform-link-group" class="link-group slp-mt-32" data-v-4e17ac2d data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-4e17ac2d><div class="gradient-header" data-v-db4b02a6 data-v-4e17ac2d></div> <h4 class="slp-mt-24 slp-text-heading4-bold header-anchor" data-v-19cf63b5 data-v-4e17ac2d>GitLab Advisory Database<a href="#gitlab-advisory-database" aria-hidden="true" class="header-anchor" data-v-19cf63b5 data-v-4e17ac2d><div role="img" aria-hidden="true" alt="Anchor Icon" class="slp-icon slp-ml-16 slp-icon--color-text-link-100" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-4e17ac2d><!----><div data-v-e356681a><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16"><path fill="currentColor" fill-rule="evenodd" d="M9.683 6.676l-.047-.048C8.27 5.26 6.07 5.243 4.726 6.588l-2.29 2.29c-1.344 1.344-1.328 3.544.04 4.91 1.366 1.368 3.564 1.385 4.908.04l1.753-1.752c-.695.074-1.457-.078-2.176-.444L5.934 12.66c-.634.634-1.67.625-2.312-.017a1.637 1.637 0 01-.017-2.312L6.035 7.9c.634-.634 1.67-.625 2.312.017.024.024.048.05.07.075l.003-.002c.36.36.943.366 1.3.01a.922.922 0 00-.01-1.3l-.027-.024zM6.58 9.586l.048.05c1.367 1.366 3.565 1.384 4.91.04l2.29-2.292c1.344-1.343 1.328-3.542-.04-4.91-1.366-1.366-3.564-1.384-4.908-.04L7.127 4.187c.695-.074 1.457.078 2.176.444l1.028-1.027c.635-.634 1.67-.624 2.313.017.643.644.652 1.678.018 2.312l-2.43 2.432c-.635.634-1.67.624-2.313-.018a1.636 1.636 0 01-.07-.075l-.003.004a.918.918 0 00-1.3-.01.922.922 0 00.01 1.3c.01.007.018.015.027.023z"/></svg></div></div></a><!----></h4> <p class="slp-my-24 link-group__description slp-text-body1" data-v-19cf63b5 data-v-4e17ac2d>The GitLab Advisory Database is a continuously updated repository of security advisories for software dependencies, essential for Dependency and Container Scanning.<!----></p> <div class="slp-row slp-mb-32" data-v-2d4c763f data-v-4e17ac2d><div cols="3" class="link-group__link slp-mt-16" data-v-2d4c763f data-v-4e17ac2d><a href="https://docs.gitlab.com/ee/user/application_security/gitlab_advisory_database/" data-ga-name="GitLab Advisory Database" data-ga-location="features" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-4e17ac2d> GitLab Advisory Database </a> <div role="img" aria-hidden="true" class="slp-icon slp-icon--size-medium slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-4e17ac2d><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M10.159 10.72a.75.75 0 101.06 1.06l3.25-3.25L15 8l-.53-.53-3.25-3.25a.75.75 0 00-1.061 1.06l1.97 1.97H1.75a.75.75 0 100 1.5h10.379l-1.97 1.97z"/></svg></div><!----></div></div></div></div></div></div></div></div><section name="solutions-platform-cta-card" class="cta-card slp-pt-96 slp-pb-160" data-v-c4592ffa data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-c4592ffa><div class="slp-row" data-v-2d4c763f data-v-c4592ffa><div class="slp-col-md-1" data-v-7737f7b0 data-v-c4592ffa><div role="img" aria-hidden="true" alt="Icon" class="slp-icon slp-icon--size-lg slp-icon--color-color-text-300" style="color:color-text-300" data-v-e356681a data-v-c4592ffa><!----><div data-v-e356681a><svg viewBox="0 0 32 32" fill="currentColor" fill-opacity="0" xmlns="http://www.w3.org/2000/svg"><g clip-path="url(#clip0_1145_6758)" stroke="currentColor" stroke-width="1.28" stroke-linecap="round" stroke-linejoin="round"><path d="M14.928 12.872l-4.182-4.16a3.622 3.622 0 10-.115 5.165l.96-.96m5.986-5.98l.893-.96a7.513 7.513 0 115.369 12.77"/><path d="M20.335 9.576l.912-.87a3.622 3.622 0 11.103 5.151l-7.823-7.88a7.515 7.515 0 10-5.372 12.769"/><path d="M15.997 28.28c-3.052-.93-5.65-3.596-5.65-7.07v-4.892a4.863 4.863 0 005.65-1.744v0a4.863 4.863 0 005.65 1.744v4.892c0 3.474-2.598 6.14-5.65 7.07"/><path d="M17.3 21.606v-1.033a1.283 1.283 0 00-1.283-1.299v0a1.285 1.285 0 00-1.282 1.299v1.033"/><path d="M17.758 21.6h-3.513v2.478h3.513V21.6z"/></g><defs><clipPath id="clip0_1145_6758"><path fill="#fff" d="M0 0h31.995v31.995H0z"/></clipPath></defs></svg></div></div></div> <div class="slp-col-md-9" data-v-7737f7b0 data-v-c4592ffa><h5 class="slp-text-heading5-bold" data-v-19cf63b5 data-v-c4592ffa> With GitLab's comprehensive security solution, you can stay ahead of compliance issues and security concerns from day one. <!----></h5> <div class="slp-my-16 slp-text-body1" data-v-19cf63b5 data-v-c4592ffa> Ready to provide your teams with the tools they need to maintain a secure and compliant development environment? <!----></div> <a href="/sales/" data-ga-name="sales" data-ga-location="body" class="slp-btn slp-btn-tertiary" data-v-52cd803a data-v-c4592ffa> Contact sales to get started <div role="img" aria-hidden="true" alt="Icon" class="slp-icon slp-icon--color-color-text-300" style="color:color-text-300;width:16px;height:16px" data-v-e356681a data-v-c4592ffa><div data-v-e356681a><svg width="16" height="16" viewBox="0 0 16 16" xmlns="http://www.w3.org/2000/svg"><path fill-rule="evenodd" clip-rule="evenodd" d="M5.22 2.22a.75.75 0 011.06 0l5.252 5.252a.75.75 0 010 1.06L6.28 13.784a.75.75 0 11-1.06-1.06l4.72-4.723L5.22 3.28a.75.75 0 010-1.06z"/></svg></div><!----></div></a></div></div></div></section> <section data-fetch-key="data-v-6f4c47e6:0" class="next-step-alt" data-v-6f4c47e6 data-v-697d4b95><div class="slp-container" data-v-db4b02a6 data-v-6f4c47e6><div class="next-step-alt__container" data-v-db4b02a6 data-v-6f4c47e6><div class="next-step-alt__header slp-mb-16" data-v-db4b02a6 data-v-6f4c47e6><h2 class="slp-text-heading2-bold" data-v-19cf63b5 data-v-6f4c47e6> Ready to get started? <!----></h2></div> <p class="description slp-mb-24 slp-text-heading5" data-v-19cf63b5 data-v-6f4c47e6> See what your team can do with the most comprehensive AI-powered DevSecOps platform. <!----></p> <div class="buttons" data-v-db4b02a6 data-v-6f4c47e6><a href="https://gitlab.com/-/trial_registrations/new?glm_content=solutions/security-compliance&glm_source=about.gitlab.com" data-ga-name="free trial" data-ga-location="feature" class="slp-btn main-button slp-btn-secondary" data-v-52cd803a data-v-6f4c47e6> Get free trial </a> <a href="/sales/" data-ga-name="sales" data-ga-location="feature" class="slp-btn secondary-button slp-btn-primary" data-v-52cd803a data-v-6f4c47e6><div role="img" aria-hidden="true" class="slp-icon slp-mr-8 slp-icon--color-color-text-300" style="color:color-text-300;width:24px;height:24px" data-v-e356681a data-v-6f4c47e6><!----><div data-v-e356681a><svg width="32" height="33" viewBox="0 0 32 33" fill="currentColor" fill-opacity="0" xmlns="http://www.w3.org/2000/svg"> <g clip-path="url(#clip0_7608_14896)"> <path d="M28.7701 11.2784C29.4558 11.2784 30.1134 11.5508 30.5982 12.0356C31.083 12.5204 31.3554 13.178 31.3554 13.8636V22.9023C31.3554 23.5879 31.083 24.2455 30.5982 24.7303C30.1134 25.2152 29.4558 25.4875 28.7701 25.4875H26.3033V29.5189L22.2719 25.4875H14.9481C14.2625 25.4875 13.6049 25.2152 13.1201 24.7303C12.6353 24.2455 12.3629 23.5879 12.3629 22.9023V14.3915C12.3629 13.5659 12.6909 12.774 13.2747 12.1902C13.8586 11.6064 14.6504 11.2784 15.4761 11.2784H26.0345" stroke="currentColor" stroke-width="1.27982" stroke-linecap="round" stroke-linejoin="round"/> <path d="M0.639526 15.9689C0.639526 16.6549 0.911795 17.3128 1.39653 17.7981C1.88126 18.2834 2.53881 18.5565 3.22475 18.5574H5.6916V22.5792L9.72301 18.551H17.0468C17.7316 18.5501 18.3882 18.2779 18.8727 17.794C19.3573 17.31 19.6303 16.6538 19.632 15.9689V6.92705C19.632 6.24111 19.3597 5.58322 18.875 5.09789C18.3902 4.61255 17.7327 4.33947 17.0468 4.33862H3.22475C2.53881 4.33947 1.88126 4.61255 1.39653 5.09789C0.911795 5.58322 0.639526 6.24111 0.639526 6.92705V13.6909" stroke="currentColor" stroke-width="1.27982" stroke-linecap="round" stroke-linejoin="round"/> </g> <defs> <clipPath id="clip0_7608_14896"> <rect width="31.9954" height="31.9954" fill="white" transform="translate(0 0.931091)"/> </clipPath> </defs> </svg> </div></div>Talk to sales </a></div></div></div></section></section> <section data-fetch-key="SlpFooterHOC:0" data-v-697d4b95><!----></section></div></div></div><script defer src="/_nuxt/static/1732377904/solutions/security-compliance/state.js"></script><script src="/_nuxt/a5e5ed7.js" defer></script><script src="/_nuxt/41dd6a4.js" defer></script><script src="/_nuxt/5a8cdbe.js" defer></script><script src="/_nuxt/52a471a.js" defer></script> </body> </html>