GitLab 10.4 is here: New security testing tools
GitLab has come a long way since its initial release in 2011. GitLab 10.4 was released earlier this week and the featured tools look promising.
There is no doubt that GitLab has become central in the world of Git repository hosting services. With more than 1.400 open source contributors and huge names as users –to mention a few: NASA, Alibaba, CERN, every GitLab release is an occasion that gets a whole lot of attention. This month’s release of the 10.4 version is it the first GitLab release of the year.
Two of the new features in 10.4 really stand out.
For GitLab, the principle of Getting Things Done is central. As stated in the official release notes, the beta version of the new Web IDE Editor that is featured in GitLab 10.4 promises faster solutions for issues like writing small fixes, correcting typos or resolving merge request feedback by simple eliminating the need to stash changes and switch branches locally.
The new security testing tools that are featured in 10.4 include Dynamic Application Security Testing (DAST) and Static Application Security Testing (SAST) for Docker Containers. GitLab does not take security testing lightly; on the contrary the new features are part of the company’s product vision of Complete DevOps. In an interview with JAXenter, Mark Pundsack, the Head of Product at GitLab stated that:
DevSecOps will be top-of-mind in 2018, with enterprises baking security into their DevOps life cycles rather than being an afterthought.
With 20 new and improved features, GitLab 10.4 is sure to attract a lot of attention. Whether those features can be optimally utilized remains to be seen and we will be here to make sure you stay updated on the newest impressions over GitLab 10.4.
P.S. Check out what the Head of Product for GitLab had to say on what to expect of DevOps in 2018:
JAXenter: 2017 has paved the way for the massive adoption of DevOps principles. What are your predictions for next year?
Mark Pundsack: There will be a backlash against the sequential DevOps toolchain, made up of dozens of separate products (whether from the same vendor or not). More companies will demand deeper integration between tools/vendors and a seamless DevSecOps experience. In addition, we’ll see an increased dominance of Kubernetes.
JAXenter: Who will be dictating the trends next year?
Mark Pundsack: The developer experience, itself, will be a main driver of trends. However, with Developers, Security, QA, and Operations (not to mention Project Managers, Product Managers, Designers, etc.) all needing to work together, more and more CIOs and broader-scoped leaders will need to be involved to truly propel their organizations forward.
See the full interview here.