Draft: Updating Resources on Security & Governance Solution page
Step 1: What is changing in this MR?
Some of the Security & Governance solution page resources are outdated. With this MR we are aiming to replace outdated resources with the latest - in alignment with the Security & Compliance campaign refresh (epic).
What we are updating:
Videos
-
Remove GitLab 15 - new security features -
Add "What do customers say about GitLab Security" video -
Vimeo link -
Image
-
-
Review "Shifting Security Left - GitLab Security Overview" -
Review "Managing Vulnerabilities and Enabling Separation of Duties with GitLab" -
Review "SBOM and Attestation"
eBooks
-
Replace link for "Guide to Software Supply Chain Security" (we have refreshed the branding in the ebook) -
Replace link for "DevSecOps with GitLab CI/CD" (we have refreshed the branding in the ebook) -
Remove 2022 GitLab survey -
Add "2023 Global DevSecOps report: Security without Sacrifices" -
landing page link -
image
-
-
Add "A Field Guide to Threat Vectors in the Software Supply Chain" -
link -
image
-
Blogs
-
Remove "9 tips to shift left" - it's from 2020 -
Add: Getting started with GitLab application security -
Add: The ultimate guide to SBOMs -
Add: Top challenges to securing the software supply chain
Analyst Reports
-
Remove "GitLab Challenger in 2022 Gartner magic Quadrant" -
Add: Gartner - Magic Quadrant - Application Security Testing (AST), 2023 - once it's live (epic)
Step 2: Ensure that your changes comply with the following, where applicable:
-
I, the Assignee, have run Axe tools on any updated pages, and fixed the relevant accessibility issues. -
These changes meet a specific OKR or item in our Quarterly Plan. -
These changes work on both Safari, Chrome, and Firefox. -
These changes have been reviewed for Visual Quality Assurance and Functional Quality Assurance on Mobile, Desktop, and Tablet. -
These changes work with our Google Analytics and SEO tools. -
These changes have been documented as expected.
Step 3: Add the appropriate labels for triage
This MR will have dex-approval::2-standard
automatically applied, but please update it as follows. If deciding between two levels, go with the higher of the two: https://gitlab.com/gitlab-com/www-gitlab-com/blob/master/sites/handbook/source/handbook/marketing/digital-experience/marketing-site-approval-process/index.html.md
Step 4: Tag the appropriate person for review
Depending on which label is used, you may tag the following people as a Reviewer
on this MR: https://about.gitlab.com/handbook/marketing/digital-experience/marketing-site-approval-process/#step-3-tag-the-appropriate-people-for-review