GitLab introduced on Monday the brand new GitLab 16 platform, an upgraded and complete AI-driven DevSecOps resolution. GitLab 16 contains greater than 55 enhancements and new options. Upgrades are anticipated to be out there quickly. GitLab 16 is offered to clients globally and there’s a Free, Premium, and Final plan.
Soar to:
What’s new in GitLab 16?
Within the GitLab 16 AI-DevSecOps platform, probably the most notable new applied sciences embrace the Worth Stream Dashboard, the Centralized Coverage Administration, GitLab Devoted and AI instruments together with Refactor this Code and Resolve this Vulnerability.
Worth Stream Dashboard
With the brand new Worth Stream Administration, customers can visualize end-to-end DevSecOps workstreams, handle software program improvement processes and achieve perception into how digital transformation and know-how investments are delivering worth and driving enterprise outcomes (Determine A).
Determine A
The dashboard permits customers with an enterprise-wide view of DevSecOps metrics, cycle instances and different very important metrics like essential vulnerabilities and deployment frequency. GitLab provides actionable reporting on frequent workflows and metrics, with nothing to put in or configure. Those that wish to dive deeper can customise metric monitoring utilizing the GitLab information retailer.
“GitLab helps organizations construct higher, safer software program quicker, enhance operational effectivity and cut back safety and compliance threat,” David DeSanto, chief product officer at GitLab, defined. “GitLab 16 goals to make these outcomes attainable for organizations of each dimension, from startups to giant enterprises, and scales with them as they develop.”
The Worth Stream Dashboard can:
- Evaluate metrics over intervals.
- Establish downward traits early.
- Reveal safety publicity points.
- Deep dive into particular person initiatives or metrics to take motion.
- Present visibility and information accessibility to all stakeholders from executives to contributors.
- Establish waste and inefficiencies to optimize workstreams.
- View and handle end-to-end processes.
- Observe flows and accelerates.
- Use DORA4 metrics to benchmark DevSecOps maturity.
- Monitor lead time for change and deployment frequency to measure DevSecOps course of effectivity.
Provide chain safety
GitLab’s present instruments assist groups stability velocity and safety by automating software program supply and securing clients’ end-to-end software program provide chain. With GitLab 16, firms will profit from new safety features to begin, scale and safe their software program provide chains, in addition to achieve full visibility into their risk panorama and set up insurance policies to help compliance (Determine B).
Determine B
New provide chain safety features for GitLab 16 embrace:
- Enhanced centralized coverage administration.
- Expanded compliance stories and controls.
- Compliance dashboards.
- Default SLSA Degree 3 attestations.
GitLab Devoted: Compliance and regulatory tech
GitLab 16 will embrace GitLab Devoted. This function is at present underneath restricted availability and shall be made usually out there.
GitLab Devoted is a single-tenant software-as-a-service resolution that gives organizations inside extremely regulated industries the instruments to satisfy complicated compliance necessities. Its principal advantages are information residency, isolation and personal networking.
With GitLab Devoted, GitLab totally manages and hosts every single-tenant occasion with information isolation and residency.
“GitLab continues to develop our platform and its capabilities with safety and compliance in thoughts, which is essential for organizations in extremely regulated industries and the general public sector,” DeSanto stated.
DeSanto gave the instance of Lockheed Martin. The American protection contractor just lately revealed the way it streamlined software program improvement and deployment, decreased system upkeep instances by 90% and strengthened safety by partnering with GitLab and AWS.
AI-powered workflows
GitLab options embrace AI-powered options together with Code Strategies, Clarify This Code, Clarify This Vulnerability and Worth Stream Forecasting. GitLab 16 provides new AI instruments: Refactor This Code and Resolve This Vulnerability. With these instruments, the corporate strikes from utilizing AI to establish threats, clarify code and predict future cycles of the worth stream to utilizing AI know-how to take actions and remedy issues.
GitLab AI-driven workflows can:
- Drive effectivity and cut back cycle instances for each part of the software program improvement lifecycle.
- Guarantee privateness.
- Assist all provide chain groups.
- Pace up and enhance the effectivity of code writing.
- Predict productiveness and detect anomalies.
- Assist remediate vulnerabilities.
- Maintain expertise updated by explaining supply code.
- Refactor code.
- Resolve vulnerabilities mechanically.
DevSecOps shifting left with innovation and AI
GitLab 16 is a direct response to market calls for that decision for the consolidation of DevSecOps instruments and the usage of AI to develop higher software program and ship it quicker.
“Dev, Sec and Ops groups are feeling extra strain in the case of toolchain administration,” stated DeSanto. “The financial system has constrained, budgets have tightened, and DevSecOps professionals are being tasked to ‘do extra with much less’ as organizations intention to ship software program quicker and extra effectively.”
GitLab surveyed 5,000 DevSecOps professionals to realize perception into priorities and the state of software program improvement, safety and operations. The 2023 International DevSecOps Report Safety With out Sacrifices revealed that 74% of safety professionals have shifted safety left or plan to within the subsequent three years.
Shift left is a major change in how software program is historically developed, transferring safety, compliance, testing, high quality and efficiency analysis to early phases of the software program improvement. The GitLab survey additionally confirmed that main builders consider there are too many know-how instruments. Over half (66%) of these surveyed stated they wish to consolidate their toolchains.
SEE: DevSecOps: AI is reshaping developer roles, however it’s not all clean crusing (TechRepublic)
However the main disrupting pressure in DevSecOps is innovation: 61% of builders say they already use AI and machine studying to verify code, up from 51% in 2022. GitLab additionally discovered that safety, effectivity and automation had been the highest advantages of a DevSecOps platform.
“GitLab’s new AI-assisted and workflow-focused capabilities intention to satisfy the trade demand by serving to software program builders enhance their productiveness and the safety of their code,” DeSanto stated. “AI and machine studying have gotten essential elements of DevSecOps workflows.”
In a latest weblog about GitLab 16, the corporate highlighted options that construct on its AI-assisted options: distant improvement workspaces, extra highly effective GitLab SaaS runners and remark templates, in addition to its improved AI-powered Code Strategies.
Prime GitLab alternate options
The highest alternate options to GitLab in 2023 in accordance with Gartner Peer Insights evaluations are Crimson Hat Ansible Automation Platform, Octopus Deploy, Azure Pipelines, IBM City Code Deploy, CloudBees and Micro Focus Launch Management.
SEE: GitLab CI/CD Software Assessment (TechRepublic)
All main software program improvement options are integrating AI instruments into their software program. With high-rating evaluations, distributors compete closely within the software program builders’ market, which is predicted to generate $659 billion in income worldwide in 2023.
What units GitLab aside within the software program improvement market?
GitLab differentiates itself from different distributors by providing a novel strategy to DevSecOps. It’s fashionable amongst builders as a result of a lot of the instruments they want can be found and constructed into the platform. Steady integration, improvement and upgrades are the important thing to its success.
As well as, GitLab is continually upgrading and enhancing its platform. The GitLab 16.1 releases are already detailed on the corporate’s upcoming releases web page. GitLab stays extremely aggressive, with greater than 30 million registered customers and greater than 50% of the Fortune 100 firms utilizing its platform and applied sciences to develop and ship software program.
“We consider that the transformative worth of AI comes from incorporating it throughout job features, not simply in code creation,” DeSanto stated. “Implementing AI all through our product helps us meet the calls for of the trade and help clients who want to enhance effectivity, combine safety and ship software program on the velocity of the market.”
