BlogSecurity LabsLearn about cybersecurity trends, best practices, and third-party threats to secure your code and digital infrastructure.Featured postHow to detect and prevent Contagious Interview IDE attacksLearn how we built custom controls that detect and prevent malware campaigns like those used for Contagious Interview and how to deploy them in your environment.Read PostRecent postsSecurity LabsBuild an automated detection testing framework with GitLab CI/CD and DuoLearn how GitLab's Signals Engineering team built the WATCH framework to continuously validate our security monitoring pipeline.Security LabsPipeline security lessons from March supply chain incidentsLearn how centralized pipeline policies can detect and block the patterns behind a series of recent attacks.Security LabsAutomating detection gap analysis with GitLab Duo Agent PlatformLearn how GitLab's Signals Engineering team uses our AI platform to automatically surface detection gaps from security incidents — no manual review required.Security LabsHow GitLab built a security control framework from scratchGitLab's Security Compliance team created a custom control framework to scale across multiple certifications and products — here's why and how you can, too.