UX Theme: Ensure Security teams can audit and triage their software components for risk to maintain compliance

Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.

Close this issue

UX Theme

Ensure Security teams can audit and triage their software components for risk to maintain compliance

Beneficiary

Application security teams
Persona: Security Analyst

Need & JTBD

JTBD: When I am triaging vulns, I want to address business-critical risks, So I can ensure there is no unattended risk in my orgs assets.
Need: Identify and escalate business-critical risk in orgs assets

Assumptive JTBD:

Big Job: Maintain org's 3rd party software compliance standards by
- Little Job: Ensure applications using 3rd party components stay in compliance with my organization's policies and take action if they aren't

Business objective

Increase Ultimate adoption and decrease churn by providing teams a way to audit their software components for policy violations.
Meet organizations' needs when operating in regulated environments
(GitLab) Participate in RFPs we are not eligible for

Confidence

Confidence	Research
High	research issue

Subthemes

Pending creation by PM

Feature/solution subthemes

Research subthemes

Edited Jul 26, 2025 by 🤖 GitLab Bot 🤖