Rezilion Integrates With GitLab
March 23, 2022

Rezilion announced an integration with GitLab.

Deployed in minutes, this native integration with GitLab CI eliminates an organization's vulnerability backlog by 70% and reduces remediation from months to days while addressing 100% of exploitable risk.

Driven by digital transformation, product organizations are innovating faster and pushing large quantities of code daily. In the past, DevSecOps teams were not equipped with critically-needed automation tools to detect, prioritize, and address security risks. GitLab surfaces potential vulnerabilities within the CI pipeline yet developers may spend time patching vulnerabilities that don't pose an actual risk. By using Rezilion in GitLab CI, customers can understand which vulnerabilities are loaded to memory and executed in runtime. This ability means they can focus on true risks instead of focusing on vulnerabilities that are not exploitable.

Adding Rezilion to GitLab CI takes minutes. It seamlessly integrates into developers' existing workflows and reduces the time they have to spend to address vulnerabilities in the Software Development Life Cycle (SDLC). As code is tested and scanned for vulnerabilities developers can now see within their Gitlab UI which vulnerabilities require their attention while non-exploitable vulnerabilities are marked as "false positives" that shouldn't hold back releases. Additionally, customers can get a clear view of all the software components in use with Rezilion's dynamic Software Bill of Materials (SBOM) to understand which software components are vulnerable in the specific runtime context of their environment.

"... This partnership helps to reduce the time joint customers spend on security issues enabling them to address risk earlier in the development process which aligns to GitLab's shift left ethos of delivering secure products faster." said Mike LeBeau, Alliance Manager at GitLab.

With Rezilion's enhanced runtime vulnerability validation technology, the GitLab integration extends developers, DevSecOps, DevOps, and security teams' continuous view of their actual attack surface and allows them to prioritize their remediation efforts on the vulnerabilities and weaknesses that matter the most.

The Rezilion-GitLab integration offers customers the following key features and benefits:

- As much as 70% reduction in false positives and patching efforts by automatically prioritizing which vulnerabilities are exploitable and which are not across GitLab CI pipelines.

- Reduction of remediation timelines from months to days by integrating directly in the development workflow, customers can address real threats promptly.

- Actionable insights within the GitLab UI. Non-exploitable vulnerabilities are marked as "false positives" and can be dismissed, while issues can be easily assigned to fix the exploitable ones.

- A dynamic SBOM that identifies all the software components, including open source components and their exploitability status for a quick view of their risk.

"Joining forces with GitLab provides customers with the first real opportunity to experience GitLab's true, integrated security without friction," said Liran Tancman, Co-Founder and CEO, of Rezilion, Inc. "Together, we're providing our customers with an enhanced solution that helps them not only test and secure builds as a part of a more fluid workflow, but also removes some of the noise, allowing them to focus on security and speed."

Share this

Industry News

April 02, 2025

Kong announced the launch of the latest version of Kong AI Gateway, which introduces new features to provide the AI security and governance guardrails needed to make GenAI and Agentic AI production-ready.

April 02, 2025

Traefik Labs announced significant enhancements to its AI Gateway platform along with new developer tools designed to streamline enterprise AI adoption and API development.

April 02, 2025

Zencoder released its next-generation AI coding and unit testing agents, designed to accelerate software development for professional engineers.

April 02, 2025

Windsurf (formerly Codeium) and Netlify announced a new technology partnership that brings seamless, one-click deployment directly into the developer's integrated development environment (IDE.)

April 02, 2025

Opsera raised $20M in Series B funding.

April 02, 2025

The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, is making significant updates to its certification offerings.

April 01, 2025

The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, announced the Golden Kubestronaut program, a distinguished recognition for professionals who have demonstrated the highest level of expertise in Kubernetes, cloud native technologies, and Linux administration.

April 01, 2025

Red Hat announced new capabilities and enhancements for Red Hat Developer Hub, Red Hat’s enterprise-grade internal developer portal based on the Backstage project.

April 01, 2025

Platform9 announced that Private Cloud Director Community Edition is generally available.

March 31, 2025

Sonatype expanded support for software development in Rust via the Cargo registry to the entire Sonatype product suite.

March 31, 2025

CloudBolt Software announced its acquisition of StormForge, a provider of machine learning-powered Kubernetes resource optimization.

March 31, 2025

Mirantis announced the k0rdent Application Catalog – with 19 validated infrastructure and software integrations that empower platform engineers to accelerate the delivery of cloud-native and AI workloads wherever the\y need to be deployed.

March 31, 2025

Traefik Labs announced its Kubernetes-native API Management product suite is now available on the Oracle Cloud Marketplace.

March 27, 2025

webAI and MacStadium(link is external) announced a strategic partnership that will revolutionize the deployment of large-scale artificial intelligence models using Apple's cutting-edge silicon technology.

March 27, 2025

Development work on the Linux kernel — the core software that underpins the open source Linux operating system — has a new infrastructure partner in Akamai. The company's cloud computing service and content delivery network (CDN) will support kernel.org, the main distribution system for Linux kernel source code and the primary coordination vehicle for its global developer network.