Explore projects

Static Application Security Testing (SAST) checks your source code for known vulnerabilities.

CI/CD component for building images in Workshop Runner Service

Statically compiled vendored binaries for use by Runner Worker instances in support of gitlab-runner-helper

BETA: Dependency Scanning for supported projects

A simple container image for finding the available versions of gitlab-runner-helper

The Value Streams Dashboard Scheduled Reports tool is a CI/CD component which allows you to periodically schedule a report with the most recent metrics from the Value Streams Dashboard feature.

The tool collects metrics from projects or groups via the public GitLab GraphQL API then builds a report using the GitLab Flavored Markdown format. As the last step, an issue will be opened in the designated project.

Collection of reusable GitLab CI/CD Components for container operations, including container signing with Cosign and ECR migration tools. Production-ready components with complete documentation and examples.

Provision infrastructure and deploy to Amazon AWS EC2 and ECS.

A Markdownlint CI component.

Go / Golang CI/CD component (format, build, test)

Dynamic Application Security Testing (DAST) makes simulated attacks against your web application to find vulnerabilities.

Components for building SLSA-compliant workflows

A collection of components to build, lint, test and deploy Ruby projects.

BETA: Run issue, merge request and epic automations and workflows using GitLab Triage.