- May 28, 2020
- Posted by: Lyra Infosystems
- Category: Blog
GitLab has updated its continuous integration/continuous delivery (CI/CD) platform with capabilities spanning from value stream management to cybersecurity in the new release version GitLab 13. With the release of GitLab 13, it continues to build on a single code base which allows the platform to be managed and accessed as an integrated set of applications rather than disparate components that DevOps teams need to pull together and then manage.
Iteration is the key!
GitLab is enabling IT and business teams to adapt, respond, and thrive. Iteration is the key here. To do so you must collaborate rapidly, optimize for efficiency, and automate processes to handle security and compliance while you focus on delivering business value. GitLab 13 can help you iterate quickly and with greater insight.
At the same time, access to Git repositories is critical, and GitLab has enhanced the Gitaly cluster for high availability Git storage to ensure there are always multiple warm replicas ready to take over if an outage occurs. GitLab has now made available Gitaly Clusters, which enables DevOps teams to create a warm replica of a Git repository.
Collaborate and respond across the entire team rapidly
GitLab builds upon capabilities that help with collaborative development, reporting, organizing, and managing work. Version control is foundational to collaboration and, with GitLab 13, they have added version control for snippets. To manage more complex projects, GitLab 13 allows you to view the epic hierarchy on your roadmap, view how your epics line up with your various milestones, and add single or multiple milestones to your releases while alerts upon closing an issue with open blockers help you focus on critical path items.
More customizable dashboards, with security dashboards, have been added to share outside of GitLab to foster collaboration with the IT security teams.
Optimize for efficiency
As many businesses strive to be more responsive and efficient, GitLab helps streamline existing software development processes. New features aimed at efficiency are added like simplified deployment to Amazon ECS and a new consolidated list of alerts that provide a single interface aggregating IT alerts originating from multiple sources. In addition, for Terraform users, GitLab 13 lets you review the summary of the terraform plan in Merge Requests and use GitLab as an HTTP Terraform state backend. DevOps teams now can route existing monitoring alerts to GitLab for triage and incident resolution.
Trust your processes and don’t sacrifice on security or compliance!
GitLab helps businesses embrace security and compliance controls end-to-end in the software development lifecycle, reducing risk, and freeing up resources to focus on business-critical needs. GitLab’s Application Security Testing capabilities help you find and fix security vulnerabilities earlier and for this reason, GitLab was just named as a Niche Player in the 2020 Gartner Magic Quadrant for Application Security Testing.
GitLab also has static application security testing (SAST) support for .NET frameworks and has expanded support for offline environments. In GitLab 13 alone features like the ability to scan REST APIs via dynamic application security testing (DAST) and access full commit history scan for secrets for even greater detection have been added. More importantly, they have rearchitected the way to handle vulnerability objects. This has enabled the ability to export vulnerabilities from the security dashboard to prioritize remediation efforts.
With respect to compliance, GitLab also plans to enable DevOps teams to establish a compliance framework, adopt its regulatory controls, and simplify audit reporting.
GitLab has become Common Vulnerabilities and Exposures (CVE) ID Numbering Authority (CNA). GitLab users can request a CVE from GitLab, either for GitLab itself or for any project hosted on GitLab.com. In the future, users can request CVE IDs directly from within GitLab.
In addition to security scanning, GitLab 13 automates policies & provides more granular control with new features such as setting a deployment freeze with the Freeze Period API to easily prevent an unintended production release during a specified period of time. To simplify audits, you can now filter search for instance-level audit events as part of the larger epic.
- In terms of core DevOps capabilities, GitLab 13 release adds the ability to customize the Value Stream Analytics module to specific workflows.
- GitLab is also now making AutoDevOps, which provides pre-defined CI/CD pipelines, available on Amazon Web Services (AWS).
- Thanks to GitLab’s collaboration with Okta, there is now also tighter integration with Okta’s System for Cross-domain Identity Management, which can be provisioned for a GitLab group.