GitLab introduced on Monday the brand new GitLab 16 platform, an upgraded and complete AI-driven DevSecOps resolution. GitLab 16 consists of greater than 55 enhancements and new options. Upgrades are anticipated to be obtainable quickly. GitLab 16 is out there to prospects globally and there’s a Free, Premium, and Final plan.
Bounce to:
What’s new in GitLab 16?
Within the GitLab 16 AI-DevSecOps platform, probably the most notable new applied sciences embody the Worth Stream Dashboard, the Centralized Coverage Administration, GitLab Devoted and AI instruments together with Refactor this Code and Resolve this Vulnerability.
Worth Stream Dashboard
With the brand new Worth Stream Administration, customers can visualize end-to-end DevSecOps workstreams, handle software program growth processes and acquire perception into how digital transformation and expertise investments are delivering worth and driving enterprise outcomes (Determine A).
Determine A
The dashboard permits customers with an enterprise-wide view of DevSecOps metrics, cycle occasions and different important metrics like crucial vulnerabilities and deployment frequency. GitLab provides actionable reporting on frequent workflows and metrics, with nothing to put in or configure. Those that wish to dive deeper can customise metric monitoring utilizing the GitLab information retailer.
“GitLab helps organizations construct higher, safer software program sooner, enhance operational effectivity and cut back safety and compliance threat,” David DeSanto, chief product officer at GitLab, defined. “GitLab 16 goals to make these outcomes attainable for organizations of each dimension, from startups to giant enterprises, and scales with them as they develop.”
The Worth Stream Dashboard can:
- Examine metrics over durations.
- Determine downward tendencies early.
- Reveal safety publicity points.
- Deep dive into particular person tasks or metrics to take motion.
- Present visibility and information accessibility to all stakeholders from executives to contributors.
- Determine waste and inefficiencies to optimize workstreams.
- View and handle end-to-end processes.
- Observe flows and accelerates.
- Use DORA4 metrics to benchmark DevSecOps maturity.
- Monitor lead time for change and deployment frequency to measure DevSecOps course of effectivity.
Provide chain safety
GitLab’s current instruments assist groups stability velocity and safety by automating software program supply and securing prospects’ end-to-end software program provide chain. With GitLab 16, corporations will profit from new security measures to begin, scale and safe their software program provide chains, in addition to acquire full visibility into their menace panorama and set up insurance policies to assist compliance (Determine B).
Determine B
New provide chain security measures for GitLab 16 embody:
- Enhanced centralized coverage administration.
- Expanded compliance reviews and controls.
- Compliance dashboards.
- Default SLSA Stage 3 attestations.
GitLab Devoted: Compliance and regulatory tech
GitLab 16 will embody GitLab Devoted. This characteristic is at the moment below restricted availability and shall be made usually obtainable.
GitLab Devoted is a single-tenant software-as-a-service resolution that gives organizations inside extremely regulated industries the instruments to satisfy advanced compliance necessities. Its principal advantages are information residency, isolation and personal networking.
With GitLab Devoted, GitLab absolutely manages and hosts every single-tenant occasion with information isolation and residency.
“GitLab continues to develop our platform and its capabilities with safety and compliance in thoughts, which is vital for organizations in extremely regulated industries and the general public sector,” DeSanto mentioned.
DeSanto gave the instance of Lockheed Martin. The American protection contractor just lately revealed the way it streamlined software program growth and deployment, decreased system upkeep occasions by 90% and strengthened safety by partnering with GitLab and AWS.
AI-powered workflows
GitLab options embody AI-powered options together with Code Strategies, Clarify This Code, Clarify This Vulnerability and Worth Stream Forecasting. GitLab 16 provides new AI instruments: Refactor This Code and Resolve This Vulnerability. With these instruments, the corporate strikes from utilizing AI to establish threats, clarify code and predict future cycles of the worth stream to utilizing AI expertise to take actions and remedy issues.
GitLab AI-driven workflows can:
- Drive effectivity and cut back cycle occasions for each part of the software program growth lifecycle.
- Guarantee privateness.
- Help all provide chain groups.
- Pace up and enhance the effectivity of code writing.
- Predict productiveness and detect anomalies.
- Assist remediate vulnerabilities.
- Preserve expertise updated by explaining supply code.
- Refactor code.
- Resolve vulnerabilities mechanically.
DevSecOps shifting left with innovation and AI
GitLab 16 is a direct response to market calls for that decision for the consolidation of DevSecOps instruments and using AI to develop higher software program and ship it sooner.
“Dev, Sec and Ops groups are feeling extra strain relating to toolchain administration,” mentioned DeSanto. “The economic system has constrained, budgets have tightened, and DevSecOps professionals are being tasked to ‘do extra with much less’ as organizations purpose to ship software program sooner and extra effectively.”
GitLab surveyed 5,000 DevSecOps professionals to realize perception into priorities and the state of software program growth, safety and operations. The 2023 World DevSecOps Report Safety With out Sacrifices revealed that 74% of safety professionals have shifted safety left or plan to within the subsequent three years.
Shift left is a big change in how software program is historically developed, transferring safety, compliance, testing, high quality and efficiency analysis to early levels of the software program growth. The GitLab survey additionally confirmed that main builders consider there are too many expertise instruments. Over half (66%) of these surveyed mentioned they wish to consolidate their toolchains.
SEE: DevSecOps: AI is reshaping developer roles, nevertheless it’s not all easy crusing (TechRepublic)
However the main disrupting power in DevSecOps is innovation: 61% of builders say they already use AI and machine studying to verify code, up from 51% in 2022. GitLab additionally discovered that safety, effectivity and automation had been the highest advantages of a DevSecOps platform.
“GitLab’s new AI-assisted and workflow-focused capabilities purpose to satisfy the business demand by serving to software program builders enhance their productiveness and the safety of their code,” DeSanto mentioned. “AI and machine studying have gotten crucial elements of DevSecOps workflows.”
In a current weblog about GitLab 16, the corporate highlighted options that construct on its AI-assisted options: distant growth workspaces, extra highly effective GitLab SaaS runners and remark templates, in addition to its improved AI-powered Code Strategies.
Prime GitLab alternate options
The highest alternate options to GitLab in 2023 based on Gartner Peer Insights opinions are Crimson Hat Ansible Automation Platform, Octopus Deploy, Azure Pipelines, IBM City Code Deploy, CloudBees and Micro Focus Launch Management.
SEE: GitLab CI/CD Device Evaluation (TechRepublic)
All main software program growth options are integrating AI instruments into their software program. With high-rating opinions, distributors compete closely within the software program builders’ market, which is anticipated to generate $659 billion in income worldwide in 2023.
What units GitLab aside within the software program growth market?
GitLab differentiates itself from different distributors by providing a singular method to DevSecOps. It’s common amongst builders as a result of a lot of the instruments they want can be found and constructed into the platform. Steady integration, growth and upgrades are the important thing to its success.
As well as, GitLab is continually upgrading and enhancing its platform. The GitLab 16.1 releases are already detailed on the corporate’s upcoming releases web page. GitLab stays extremely aggressive, with greater than 30 million registered customers and greater than 50% of the Fortune 100 corporations utilizing its platform and applied sciences to develop and ship software program.
“We consider that the transformative worth of AI comes from incorporating it throughout job features, not simply in code creation,” DeSanto mentioned. “Implementing AI all through our product helps us meet the calls for of the business and help prospects who need to enhance effectivity, combine safety and ship software program on the velocity of the market.”