2018-02-22-gitlab-10-5-released.html.md 4.56 KB
Newer Older
Fabio Busatto's avatar
Fabio Busatto committed
1
---
2 3 4 5 6 7 8 9
release_number: "10.5"
title: "GitLab 10.5 released with Let's Encrypt integration, Gemnasium dependency checks, and CI/CD external files"
author: Fabio Busatto
author_gitlab: bikebilly
author_twitter:
image_title: '/images/10_5/10_5-cover-image.jpg'
description: "GitLab 10.5 released with Let's Encrypt integration, CI/CD external files, Gemnasium dependency checks, External Policy Classification Control, and much more!"
twitter_image: '/images/tweets/gitlab-10-5-released.png'
Rebecca Dodd's avatar
Rebecca Dodd committed
10
categories: releases
11
layout: release
Rebecca Dodd's avatar
Rebecca Dodd committed
12
tags: features, releases
Fabio Busatto's avatar
Fabio Busatto committed
13 14
---

Rebecca Dodd's avatar
Rebecca Dodd committed
15
In this month’s release of GitLab 10.5 we’ve added capabilities to encrypt GitLab traffic easily, improve application security, scaling CI/CD management, and so much more.
Fabio Busatto's avatar
Fabio Busatto committed
16

Fabio Busatto's avatar
Fabio Busatto committed
17
<!-- more -->
Fabio Busatto's avatar
Fabio Busatto committed
18

Joshua Lambert's avatar
Joshua Lambert committed
19
## Secure GitLab deployments in less time
Fabio Busatto's avatar
Fabio Busatto committed
20
{:.intro-header}
Fabio Busatto's avatar
Fabio Busatto committed
21

Rebecca Dodd's avatar
Rebecca Dodd committed
22
HTTPS is a pillar of internet security and a must-have if your GitLab instance is exposed to the public internet. It provides two key benefits. First, traffic is encrypted to and from the server, protecting credentials and other sensitive data from potential eavesdropping. Second, it allows users to verify the site identity. Without a verified identity it's possible for users to log into the wrong site. These capabilities are particularly important for mobile and remote users, who often use public unsecured Wi-Fi increasing the risk of snooping or interacting with a malicious site.
Fabio Busatto's avatar
Fabio Busatto committed
23

Joshua Lambert's avatar
Joshua Lambert committed
24
Although HTTPS provides great security, setting up HTTPS and requesting certificates can be a hassle involving credit cards and key management.
Fabio Busatto's avatar
Fabio Busatto committed
25

Rebecca Dodd's avatar
Rebecca Dodd committed
26
[Let’s Encrypt](https://letsencrypt.org/) is a free, automated, and open certificate authority. With GitLab 10.5 we’ve added [Let’s Encrypt integration](#instant-ssl-with-lets-encrypt-for-gitlab), allowing you to enable instant SSL certificates with a single option. Enabling Let’s Encrypt on your GitLab instance ensures traffic to your GitLab instance is encrypted and the identity of your site is verified. The Let’s Encrypt integration is available on both paid and open source GitLab.
Fabio Busatto's avatar
Fabio Busatto committed
27

28
## Scale your pipeline management
Fabio Busatto's avatar
Fabio Busatto committed
29 30
{:.intro-header}

Achilleas Pipinellis's avatar
Achilleas Pipinellis committed
31
Today, we’re releasing a simple feature with powerful implications.
Fabio Busatto's avatar
Fabio Busatto committed
32

Rebecca Dodd's avatar
Rebecca Dodd committed
33
Running DevOps in an enterprise environment comes with some unique challenges. For many of our largest customers, the DevOps team is responsible for providing CI/CD pipelines to a large number of development teams throughout the organization. Previously, this was a painful process to manage. There wasn’t a scalable way to distribute reusable pipeline configuration which meant code needed to be manually copied between multiple `.gitlab-ci.yml` files in multiple projects. This was a labor-intensive and error-prone process. Additionally, it didn't provide adequate controls to ensure testing and deployment is consistently enforced for each repo.
Fabio Busatto's avatar
Fabio Busatto committed
34

Fabio Busatto's avatar
Fabio Busatto committed
35
Starting with 10.5, you can now [include external files in CI/CD pipeline definition](#include-external-files-in-cicd-pipeline-definition). Included files can be either local (contained in the same repo) or remote (accessible via HTTP/HTTPS).  Including local files allows a large and complex `.gitlab-ci.yml` to be broken up in to modular chunks that are easier to maintain. Remote files allow these modular chunks to be distributed across thousands (or potentially millions) of repositories. Now there’s a simple, consistent, and maintainable way to distribute pipeline configuration.
Fabio Busatto's avatar
Fabio Busatto committed
36

William Chia's avatar
William Chia committed
37
## Better security testing with Gemnasium
Fabio Busatto's avatar
Fabio Busatto committed
38 39
{:.intro-header}

40
Less than a month ago, [GitLab acquired Gemnasium](/press/releases/2018-01-30-gemnasium-acquisition.html). As promised, we haven’t wasted any time in bringing Gemnasium’s advanced dependency-checking functionality to GitLab users. Often, when companies make acquisitions, they tend to create bolt-on additions or package functionality as separate offerings. GitLab’s vision is to provide a [single application architecture](/direction/#single-application) so that dev, QA, security, and ops can work concurrently off the same data in the same interface. In this spirit we’ve [integrated Gemnasium’s technology](#gemnasium-dependency-checks) seamlessly into GitLab CI/CD, supercharging security testing.
Fabio Busatto's avatar
Fabio Busatto committed
41

Rebecca Dodd's avatar
Rebecca Dodd committed
42
Thanks to advanced algorithms and a larger vulnerability database, GitLab now provides more complete results in JavaScript, Ruby, and Python. We’ve also added PHP and Java support so you have five languages total.
Fabio Busatto's avatar
Fabio Busatto committed
43

Fabio Busatto's avatar
Fabio Busatto committed
44 45
## See all the features
{:.intro-header}
Fabio Busatto's avatar
Fabio Busatto committed
46

47
This post highlights 26 enhancements (18 of which are available in open source GitLab!) For the full list of improvements see the [changelog](#changelog). Or read on to learn more about all of the key features shipped in 10.5!