🦊 GitLab

GitLab Orbit, now in public beta, is the context graph for the entire software lifecycle. about.gitlab.com/blog/introduci… It continuously maps code, work items, pipelines, deployments, and production signals into a single live graph, so agents reason from first-party context instead of fragmented signals.

New in GitLab 19.1: third-party SARIF scanner support, secret false positive detection (GA), tool approval guardrails for Duo agents, Code Owners auto-assigned as reviewers, stacked MR visibility in the UI, and inline blame as a toggle. Read the notes: docs.gitlab.com/releases/19/gi…

With GitLab 19.1, approving a merge request is the trigger, not the finish line. The new MR Approved trigger fires your Duo Flow automations the moment an MR is approved, automatically kicking off post-approval steps like deployment readiness checks, compliance logging, and handoff notifications. No manual follow-up, no missed steps, just event-driven automation that runs exactly when it should. For a full list of all the new triggers, plus a summary of what else is available in AI governance and operations in 19.1, check out the release blog. about.gitlab.com/blog/ai-catalo… Watch the demo.

With GitLab 19.1, your team spends time reducing risk, not chasing false positives. about.gitlab.com/blog/one-vulne… Secret detection loses its value when findings are buried in noise. GitLab 19.1 scans every commit on a new branch so nothing slips through early in the history, and Secret False Positive Detection (GA) adds a confidence score and an easy to understand explanation to each finding so your team knows exactly what to prioritize. Watch the demo.

With GitLab 19.1, third-party scanner coverage is a policy, not a manual task. about.gitlab.com/blog/one-vulne… Third-party scanners are defined once at the group level and enforced on every pipeline automatically. Any SARIF-compatible scanner feeds into one unified vulnerability view, so your security team always knows what's covered and can prove it. Watch the demo to see it in action.

Learn more about the 19.1 release: about.gitlab.com/whats-new/ Ready to dive deeper into 19.1? Learn more here: AI Governance and Third Party Integrations: about.gitlab.com/blog/one-vulne… AI Catalog Updates for Governance and Operations: about.gitlab.com/blog/ai-catalo…

With event-driven triggers, Duo Flows now run automatically on real GitLab events, no manual handoff required. Secret Detection now scans every commit on a new branch, not just the latest. Secret False Positive Detection, now generally available, adds a confidence score to each finding so your team focuses on real exposures, not noise.And AI audit event streaming and agent tool approval guardrails, both now in beta, record every agent action and let admins control what agents can do before they act.

GitLab 19.1 is here. Integrate third-party scanners and get full scanner coverage of your projects. AI workflows now run without a human trigger, and governance controls give enterprises the authority to decide what runs in their environment and prove what it did. Here are the key changes in this release 🧵:

GitLab has been named a Leader in the 2026 @Gartner_inc Magic Quadrant™ for DevSecOps Platforms for the fourth consecutive year! 🎉 Read the report: about.gitlab.com/blog/gitlab-le…

Join us for a big day in the Big Apple at #AWSSummit New York. Find us at booth #700 to learn more about our latest innovations designed to make agentic AI for software engineering faster, smarter, and more cost effective at scale.

@Capgemini Read more about the partnership here: about.gitlab.com/blog/gitlab-an…

GitLab and @Capgemini have signed a global alliance partnership agreement. The collaboration brings together GitLab's intelligent orchestration platform for DevSecOps and Capgemini's expertise in digital and business transformation, helping organizations modernize their software delivery, secure their supply chain, and bring AI into their development workflows.

Is your GitLab pipeline stuck on pending? Runner issues account for 15% of all GitLab support tickets, but you can fix 80% of them by checking just three things. Check out our latest episode of "GitLab for Everyone" series, where we break down GitLab for developers at every level. youtu.be/QEq357drrCo?si…

If you missed GitLab Transcend last week, the on-demand is live. 50x faster agent execution. 11x faster responses. 45x fewer hallucinations. Full audit and policy controls for every agent action. We packed a lot into one event, catch everything at your own pace. Check it out here: about.gitlab.com/events/transce…

4 announcements from GitLab Transcend, and the numbers do the talking: 50x faster agent execution with next-gen SCM. 11x faster responses and 4.5x fewer tokens with GitLab Orbit. Full audit and policy controls with Governance for Agents. One annual commitment that actually flexes with GitLab Flex. Blogs in the replies 👇

Git was built for a distributed workforce. That model breaks when each team member runs hundreds of agents. That's why we built Next Generation SCM, now in private beta. Same Git compatibility and auditability, with a backend designed for agentic access from the start. Early internal results are promising: up to 2x fewer tokens, up to 50x faster wall clock time, and up to 1,000x less network traffic. Learn more. about.gitlab.com/blog/gitlab-tr…

The Monday Merge is back, with a special edition straight from GitLab Transcend London! Watch to see what we covered. Read more in our Monday Merge Newsletter: linkedin.com/pulse/speed-ea…