[{"data":1,"prerenderedAt":725},["ShallowReactive",2],{"/en-us/topics/devsecops/devsecops-security-checklist/":3,"navigation-en-us":53,"banner-en-us":483,"footer-en-us":500,"next-steps-en-us":710},{"_path":4,"_dir":5,"_draft":6,"_partial":6,"_locale":7,"seo":8,"content":11,"_id":47,"_type":48,"title":7,"_source":49,"_file":50,"_stem":51,"_extension":52},"/en-us/topics/devsecops/devsecops-security-checklist","devsecops",false,"",{"title":9,"ogTitle":9,"description":10,"ogDescription":10},"A DevSecOps security checklist","Follow these ten steps to seamlessly integrate security into DevOps",[12,26,32,45],{"type":13,"componentName":13,"componentContent":14},"CommonBreadcrumbs",{"crumbs":15},[16,20,24],{"title":17,"config":18},"Topics",{"href":19},"/topics/",{"title":21,"config":22},"Devsecops",{"href":23},"/topics/devsecops/",{"title":25},"Devsecops security checklist",{"type":27,"componentName":27,"componentContent":28},"CommonArticleHero",{"title":9,"text":29,"config":30},"Your team has embraced the DevOps methodology and you're ready to shift security left, moving it closer to developers. Developers are more likely to find and fix bugs if it's easy for them to do so right in their workflow. But changing long-held beliefs and biases about security requires planning, patience, and persistence.\n",{"id":31,"twoColumns":6},"a-devsecops-security-checklist",{"type":33,"componentName":33,"componentContent":34},"CommonSideNavigationWithTree",{"anchors":35,"components":38},{"text":36,"data":37},"More on this topic",[],[39],{"type":40,"componentName":40,"componentContent":41},"TopicsCopy",{"text":42,"config":43},"Here's a ten-step [DevSecOps](/topics/devsecops/){data-ga-name=\"devsecops\" data-ga-location=\"body\"} security checklist that can help any team get on the same page.\n\n### Understand where security is creating challenges in the development process\n\nOur [2022 Global DevSecOps Survey](/developer-survey/){data-ga-name=\"developer survey\" data-ga-location=\"body\"} shows the divide between developers and security is closing, but some friction remains. A full 57% of survey takers agreed security is a performance metric for developers in their organization, but 56% said it was difficult to get developers to prioritize fixing code vulnerabilities. In the end, 59% said security vulnerabilities were most likely to be found by the security team after the code is merged in a test environment. There isn't even agreement on who is actually responsible for security: 43% of security pros said they are, but 53% said everyone is. The bottom line: confusion abounds. The first step should be to understand what is most challenging within your DevSecOps pipeline.\n\n### Align everyone on a common goal\n\nWith so many different assumptions about security and ownership, offering clear goals to the team will provide something tangible to work towards. Moving security forward in the software lifecycle won't help anyone if your team doesn't understand their responsibilities and expectations. For example, aligning on the goal of testing more code could translate into faster releases once things are going smoothly. Similarly, establishing a goal of improving planning by bringing in a security champion from the beginning means security is involved in every step of the process, reducing friction and ultimately speeding up release cycles. A [successful DevSecOps practice](/solutions/security-compliance/){data-ga-name=\"successful devsecops\" data-ga-location=\"body\"} improves accountability even among non-security team members by creating a culture where reducing security risks is everyone's responsibility.\n\n### Complete an audit to identify where teams are wasting time\n\nWithout DevSecOps, security teams identify security vulnerabilities using their own tools, usually at the end of a development cycle, and then kick them back to the development team for remediation. This back and forth puts the two teams in a constant state of friction and wastes time with inefficient communications. By understanding just how much time your team wastes dealing with vulnerabilities after code is merged, you might be able to identify patterns and make adjustments for improvement. For example, are security teams having trouble tracking the remediation status of critical vulnerabilities, meaning they constantly have to check in with the development team to understand the latest? This could point to the need for a [single dashboard](/blog/gitlab-is-setting-standard-for-devsecops/){data-ga-name=\"single dashboard\" data-ga-location=\"body\"} where both developers and security pros can see the status of remediation for critical vulnerabilities.\n\n### Discuss pain points and bottlenecks\n\nSecurity can be a bottleneck to releasing software quickly, but it's much too important to minimize or ignore. DevSecOps promises to bring security forward in the software development lifecycle — but getting there is a journey. An important step is to bring everyone together — development, security, and operations teams — for a frank discussion about the pain points and bottlenecks related to security. Once everything is on the table, create a plan to resolve each concern, and then execute that plan. Having this discussion helps to ensure that everyone's voice is heard and identifies pain points that might not be apparent from cold, hard data.\n\n### Make small, incremental code changes\n\nAt GitLab, [iteration](https://handbook.gitlab.com/handbook/values/){data-ga-name=\"iteration\" data-ga-location=\"body\"} is one of our core values, so when we make changes, we make tiny, quick-to-accomplish alterations and then build on them. The same principle is true when shifting from [DevOps](/topics/devops/){data-ga-name=\"devops\" data-ga-location=\"body\"} to DevSecOps. Smaller, incremental code changes are easier to review and secure, and can be launched more quickly than monolithic project changes. Producing code in small chunks or units, and then running automated tests on those units as they're committed, allows developers to remediate any vulnerabilities on the spot — rather than waiting for feedback days, weeks, or even months later. Running regular tests saves time down the road, when the completed app is tested before pushing it to production.\n\n### Automate and integrate\n\nAutomation and [integration](/topics/ci-cd/implement-continuous-integration/){data-ga-name=\"integration\" data-ga-location=\"body\"} are key for DevOps, but they're also what make security scans a powerful tool. If scans are ubiquitous, every code change will be reviewed and vulnerabilities will be found much earlier in the process. The scans must be built into the developer's workflow. Integrated security enables developers to find and fix vulnerabilities before the code ever leaves their hands. This also reduces the volume of security issues sent to the security team, streamlining their review.\n\n### Give developers access to the results of security reports\n\nRather than keeping the results of static application security testing (SAST) and dynamic application security testing (DAST) siloed with security teams, make sure this information is shared across the team, especially with developers. While this is important for remediation, it's also a valuable tool to help developers build the necessary security controls into the software development lifecycle.\n\n### Complete an audit of waterfall-style security processes\n\nIn the traditional [waterfall-style approach to security](https://www.umsl.edu/~hugheyd/is6840/waterfall.html), vulnerabilities are typically found at the end of the development cycle. Take the time to audit existing security workflows within your software development lifecycle. If you find any waterfall-style processes, consider eliminating or at least greatly reducing your dependence on them. You should always be able to change direction as needs arise: Keep your organization nimble.\n\n### Make sure the security team has visibility into vulnerability status\n\nThe [2022 Global DevSecOps Survey](/developer-survey/){data-ga-name=\"2022 developer survey\" data-ga-location=\"body\"} showed that the biggest challenge facing security professionals is prioritizing vulnerability remediation. Other concerns included the volume of false positives and difficulty tracking vulnerability status. This could be one of the factors behind security pros' somewhat negative outlook for the future: only 56% said they feel “somewhat” or “very prepared” for the future (almost 20 points lower than the average dev and ops response). It's clear that security teams need better visibility into both resolved and unresolved vulnerabilities, where the vulnerabilities reside, who created them, and their status for remediation.\n\n### Streamline your tools into a single DevOps platform\n\nIt's difficult for everyone to be responsible for security when teams don't have the right tools. The best way to shift security left is with an end-to-end platform that helps DevOps teams move away from waterfall-style processes, streamlines communication, includes automation and continuous integration, and provides a single source of truth for the results of security scans and the status of critical vulnerabilities.\n",{"id":44},"understand-where-security-is-creating-challenges-in-the-development-process",{"type":46,"componentName":46},"CommonNextSteps","content:en-us:topics:devsecops:devsecops-security-checklist:index.yml","yaml","content","en-us/topics/devsecops/devsecops-security-checklist/index.yml","en-us/topics/devsecops/devsecops-security-checklist/index","yml",{"_path":54,"_dir":55,"_draft":6,"_partial":6,"_locale":7,"data":56,"_id":479,"_type":48,"title":480,"_source":49,"_file":481,"_stem":482,"_extension":52},"/shared/en-us/main-navigation","en-us",{"logo":57,"freeTrial":62,"sales":67,"login":72,"items":77,"search":410,"minimal":441,"duo":460,"pricingDeployment":469},{"config":58},{"href":59,"dataGaName":60,"dataGaLocation":61},"/","gitlab logo","header",{"text":63,"config":64},"Get free trial",{"href":65,"dataGaName":66,"dataGaLocation":61},"https://gitlab.com/-/trial_registrations/new?glm_source=about.gitlab.com&glm_content=default-saas-trial/","free trial",{"text":68,"config":69},"Talk to sales",{"href":70,"dataGaName":71,"dataGaLocation":61},"/sales/","sales",{"text":73,"config":74},"Sign in",{"href":75,"dataGaName":76,"dataGaLocation":61},"https://gitlab.com/users/sign_in/","sign in",[78,122,220,225,331,391],{"text":79,"config":80,"cards":82,"footer":105},"Platform",{"dataNavLevelOne":81},"platform",[83,89,97],{"title":79,"description":84,"link":85},"The most comprehensive AI-powered DevSecOps Platform",{"text":86,"config":87},"Explore our Platform",{"href":88,"dataGaName":81,"dataGaLocation":61},"/platform/",{"title":90,"description":91,"link":92},"GitLab Duo (AI)","Build software faster with AI at every stage of development",{"text":93,"config":94},"Meet GitLab Duo",{"href":95,"dataGaName":96,"dataGaLocation":61},"/gitlab-duo/","gitlab duo ai",{"title":98,"description":99,"link":100},"Why GitLab","10 reasons why Enterprises choose GitLab",{"text":101,"config":102},"Learn more",{"href":103,"dataGaName":104,"dataGaLocation":61},"/why-gitlab/","why gitlab",{"title":106,"items":107},"Get started with",[108,113,118],{"text":109,"config":110},"Platform Engineering",{"href":111,"dataGaName":112,"dataGaLocation":61},"/solutions/platform-engineering/","platform engineering",{"text":114,"config":115},"Developer Experience",{"href":116,"dataGaName":117,"dataGaLocation":61},"/developer-experience/","Developer experience",{"text":119,"config":120},"MLOps",{"href":121,"dataGaName":119,"dataGaLocation":61},"/topics/devops/the-role-of-ai-in-devops/",{"text":123,"left":124,"config":125,"link":127,"lists":131,"footer":202},"Product",true,{"dataNavLevelOne":126},"solutions",{"text":128,"config":129},"View all Solutions",{"href":130,"dataGaName":126,"dataGaLocation":61},"/solutions/",[132,157,181],{"title":133,"description":134,"link":135,"items":140},"Automation","CI/CD and automation to accelerate deployment",{"config":136},{"icon":137,"href":138,"dataGaName":139,"dataGaLocation":61},"AutomatedCodeAlt","/solutions/delivery-automation/","automated software delivery",[141,145,149,153],{"text":142,"config":143},"CI/CD",{"href":144,"dataGaLocation":61,"dataGaName":142},"/solutions/continuous-integration/",{"text":146,"config":147},"AI-Assisted Development",{"href":95,"dataGaLocation":61,"dataGaName":148},"AI assisted development",{"text":150,"config":151},"Source Code Management",{"href":152,"dataGaLocation":61,"dataGaName":150},"/solutions/source-code-management/",{"text":154,"config":155},"Automated Software Delivery",{"href":138,"dataGaLocation":61,"dataGaName":156},"Automated software delivery",{"title":158,"description":159,"link":160,"items":165},"Security","Deliver code faster without compromising security",{"config":161},{"href":162,"dataGaName":163,"dataGaLocation":61,"icon":164},"/solutions/security-compliance/","security and compliance","ShieldCheckLight",[166,171,176],{"text":167,"config":168},"Application Security Testing",{"href":169,"dataGaName":170,"dataGaLocation":61},"/solutions/application-security-testing/","Application security testing",{"text":172,"config":173},"Software Supply Chain Security",{"href":174,"dataGaLocation":61,"dataGaName":175},"/solutions/supply-chain/","Software supply chain security",{"text":177,"config":178},"Software Compliance",{"href":179,"dataGaName":180,"dataGaLocation":61},"/solutions/software-compliance/","software compliance",{"title":182,"link":183,"items":188},"Measurement",{"config":184},{"icon":185,"href":186,"dataGaName":187,"dataGaLocation":61},"DigitalTransformation","/solutions/visibility-measurement/","visibility and measurement",[189,193,197],{"text":190,"config":191},"Visibility & Measurement",{"href":186,"dataGaLocation":61,"dataGaName":192},"Visibility and Measurement",{"text":194,"config":195},"Value Stream Management",{"href":196,"dataGaLocation":61,"dataGaName":194},"/solutions/value-stream-management/",{"text":198,"config":199},"Analytics & Insights",{"href":200,"dataGaLocation":61,"dataGaName":201},"/solutions/analytics-and-insights/","Analytics and insights",{"title":203,"items":204},"GitLab for",[205,210,215],{"text":206,"config":207},"Enterprise",{"href":208,"dataGaLocation":61,"dataGaName":209},"/enterprise/","enterprise",{"text":211,"config":212},"Small Business",{"href":213,"dataGaLocation":61,"dataGaName":214},"/small-business/","small business",{"text":216,"config":217},"Public Sector",{"href":218,"dataGaLocation":61,"dataGaName":219},"/solutions/public-sector/","public sector",{"text":221,"config":222},"Pricing",{"href":223,"dataGaName":224,"dataGaLocation":61,"dataNavLevelOne":224},"/pricing/","pricing",{"text":226,"config":227,"link":229,"lists":233,"feature":318},"Resources",{"dataNavLevelOne":228},"resources",{"text":230,"config":231},"View all resources",{"href":232,"dataGaName":228,"dataGaLocation":61},"/resources/",[234,267,290],{"title":235,"items":236},"Getting started",[237,242,247,252,257,262],{"text":238,"config":239},"Install",{"href":240,"dataGaName":241,"dataGaLocation":61},"/install/","install",{"text":243,"config":244},"Quick start guides",{"href":245,"dataGaName":246,"dataGaLocation":61},"/get-started/","quick setup checklists",{"text":248,"config":249},"Learn",{"href":250,"dataGaLocation":61,"dataGaName":251},"https://university.gitlab.com/","learn",{"text":253,"config":254},"Product documentation",{"href":255,"dataGaName":256,"dataGaLocation":61},"https://docs.gitlab.com/","product documentation",{"text":258,"config":259},"Best practice videos",{"href":260,"dataGaName":261,"dataGaLocation":61},"/getting-started-videos/","best practice videos",{"text":263,"config":264},"Integrations",{"href":265,"dataGaName":266,"dataGaLocation":61},"/integrations/","integrations",{"title":268,"items":269},"Discover",[270,275,280,285],{"text":271,"config":272},"Customer success stories",{"href":273,"dataGaName":274,"dataGaLocation":61},"/customers/","customer success stories",{"text":276,"config":277},"Blog",{"href":278,"dataGaName":279,"dataGaLocation":61},"/blog/","blog",{"text":281,"config":282},"Remote",{"href":283,"dataGaName":284,"dataGaLocation":61},"https://handbook.gitlab.com/handbook/company/culture/all-remote/","remote",{"text":286,"config":287},"TeamOps",{"href":288,"dataGaName":289,"dataGaLocation":61},"/teamops/","teamops",{"title":291,"items":292},"Connect",[293,298,303,308,313],{"text":294,"config":295},"GitLab Services",{"href":296,"dataGaName":297,"dataGaLocation":61},"/services/","services",{"text":299,"config":300},"Community",{"href":301,"dataGaName":302,"dataGaLocation":61},"/community/","community",{"text":304,"config":305},"Forum",{"href":306,"dataGaName":307,"dataGaLocation":61},"https://forum.gitlab.com/","forum",{"text":309,"config":310},"Events",{"href":311,"dataGaName":312,"dataGaLocation":61},"/events/","events",{"text":314,"config":315},"Partners",{"href":316,"dataGaName":317,"dataGaLocation":61},"/partners/","partners",{"backgroundColor":319,"textColor":320,"text":321,"image":322,"link":326},"#2f2a6b","#fff","Insights for the future of software development",{"altText":323,"config":324},"the source promo card",{"src":325},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1758208064/dzl0dbift9xdizyelkk4.svg",{"text":327,"config":328},"Read the latest",{"href":329,"dataGaName":330,"dataGaLocation":61},"/the-source/","the source",{"text":332,"config":333,"lists":335},"Company",{"dataNavLevelOne":334},"company",[336],{"items":337},[338,343,349,351,356,361,366,371,376,381,386],{"text":339,"config":340},"About",{"href":341,"dataGaName":342,"dataGaLocation":61},"/company/","about",{"text":344,"config":345,"footerGa":348},"Jobs",{"href":346,"dataGaName":347,"dataGaLocation":61},"/jobs/","jobs",{"dataGaName":347},{"text":309,"config":350},{"href":311,"dataGaName":312,"dataGaLocation":61},{"text":352,"config":353},"Leadership",{"href":354,"dataGaName":355,"dataGaLocation":61},"/company/team/e-group/","leadership",{"text":357,"config":358},"Team",{"href":359,"dataGaName":360,"dataGaLocation":61},"/company/team/","team",{"text":362,"config":363},"Handbook",{"href":364,"dataGaName":365,"dataGaLocation":61},"https://handbook.gitlab.com/","handbook",{"text":367,"config":368},"Investor relations",{"href":369,"dataGaName":370,"dataGaLocation":61},"https://ir.gitlab.com/","investor relations",{"text":372,"config":373},"Trust Center",{"href":374,"dataGaName":375,"dataGaLocation":61},"/security/","trust center",{"text":377,"config":378},"AI Transparency Center",{"href":379,"dataGaName":380,"dataGaLocation":61},"/ai-transparency-center/","ai transparency center",{"text":382,"config":383},"Newsletter",{"href":384,"dataGaName":385,"dataGaLocation":61},"/company/contact/","newsletter",{"text":387,"config":388},"Press",{"href":389,"dataGaName":390,"dataGaLocation":61},"/press/","press",{"text":392,"config":393,"lists":394},"Contact us",{"dataNavLevelOne":334},[395],{"items":396},[397,400,405],{"text":68,"config":398},{"href":70,"dataGaName":399,"dataGaLocation":61},"talk to sales",{"text":401,"config":402},"Get help",{"href":403,"dataGaName":404,"dataGaLocation":61},"/support/","get help",{"text":406,"config":407},"Customer portal",{"href":408,"dataGaName":409,"dataGaLocation":61},"https://customers.gitlab.com/customers/sign_in/","customer portal",{"close":411,"login":412,"suggestions":419},"Close",{"text":413,"link":414},"To search repositories and projects, login to",{"text":415,"config":416},"gitlab.com",{"href":75,"dataGaName":417,"dataGaLocation":418},"search login","search",{"text":420,"default":421},"Suggestions",[422,424,428,430,434,438],{"text":90,"config":423},{"href":95,"dataGaName":90,"dataGaLocation":418},{"text":425,"config":426},"Code Suggestions (AI)",{"href":427,"dataGaName":425,"dataGaLocation":418},"/solutions/code-suggestions/",{"text":142,"config":429},{"href":144,"dataGaName":142,"dataGaLocation":418},{"text":431,"config":432},"GitLab on AWS",{"href":433,"dataGaName":431,"dataGaLocation":418},"/partners/technology-partners/aws/",{"text":435,"config":436},"GitLab on Google Cloud",{"href":437,"dataGaName":435,"dataGaLocation":418},"/partners/technology-partners/google-cloud-platform/",{"text":439,"config":440},"Why GitLab?",{"href":103,"dataGaName":439,"dataGaLocation":418},{"freeTrial":442,"mobileIcon":447,"desktopIcon":452,"secondaryButton":455},{"text":443,"config":444},"Start free trial",{"href":445,"dataGaName":66,"dataGaLocation":446},"https://gitlab.com/-/trials/new/","nav",{"altText":448,"config":449},"Gitlab Icon",{"src":450,"dataGaName":451,"dataGaLocation":446},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1758203874/jypbw1jx72aexsoohd7x.svg","gitlab icon",{"altText":448,"config":453},{"src":454,"dataGaName":451,"dataGaLocation":446},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1758203875/gs4c8p8opsgvflgkswz9.svg",{"text":456,"config":457},"Get Started",{"href":458,"dataGaName":459,"dataGaLocation":446},"https://gitlab.com/-/trial_registrations/new?glm_source=about.gitlab.com/compare/gitlab-vs-github/","get started",{"freeTrial":461,"mobileIcon":465,"desktopIcon":467},{"text":462,"config":463},"Learn more about GitLab Duo",{"href":95,"dataGaName":464,"dataGaLocation":446},"gitlab duo",{"altText":448,"config":466},{"src":450,"dataGaName":451,"dataGaLocation":446},{"altText":448,"config":468},{"src":454,"dataGaName":451,"dataGaLocation":446},{"freeTrial":470,"mobileIcon":475,"desktopIcon":477},{"text":471,"config":472},"Back to pricing",{"href":223,"dataGaName":473,"dataGaLocation":446,"icon":474},"back to pricing","GoBack",{"altText":448,"config":476},{"src":450,"dataGaName":451,"dataGaLocation":446},{"altText":448,"config":478},{"src":454,"dataGaName":451,"dataGaLocation":446},"content:shared:en-us:main-navigation.yml","Main Navigation","shared/en-us/main-navigation.yml","shared/en-us/main-navigation",{"_path":484,"_dir":55,"_draft":6,"_partial":6,"_locale":7,"title":485,"button":486,"image":491,"config":495,"_id":497,"_type":48,"_source":49,"_file":498,"_stem":499,"_extension":52},"/shared/en-us/banner","is now in public beta!",{"text":487,"config":488},"Try the Beta",{"href":489,"dataGaName":490,"dataGaLocation":61},"/gitlab-duo/agent-platform/","duo banner",{"altText":492,"config":493},"GitLab Duo Agent Platform",{"src":494},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1753720689/somrf9zaunk0xlt7ne4x.svg",{"layout":496},"release","content:shared:en-us:banner.yml","shared/en-us/banner.yml","shared/en-us/banner",{"_path":501,"_dir":55,"_draft":6,"_partial":6,"_locale":7,"data":502,"_id":706,"_type":48,"title":707,"_source":49,"_file":708,"_stem":709,"_extension":52},"/shared/en-us/main-footer",{"text":503,"source":504,"edit":510,"contribute":515,"config":520,"items":525,"minimal":698},"Git is a trademark of Software Freedom Conservancy and our use of 'GitLab' is under license",{"text":505,"config":506},"View page source",{"href":507,"dataGaName":508,"dataGaLocation":509},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/","page source","footer",{"text":511,"config":512},"Edit this page",{"href":513,"dataGaName":514,"dataGaLocation":509},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/-/blob/main/content/","web ide",{"text":516,"config":517},"Please contribute",{"href":518,"dataGaName":519,"dataGaLocation":509},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/-/blob/main/CONTRIBUTING.md/","please contribute",{"twitter":521,"facebook":522,"youtube":523,"linkedin":524},"https://twitter.com/gitlab","https://www.facebook.com/gitlab","https://www.youtube.com/channel/UCnMGQ8QHMAnVIsI3xJrihhg","https://www.linkedin.com/company/gitlab-com",[526,549,605,634,668],{"title":79,"links":527,"subMenu":532},[528],{"text":529,"config":530},"DevSecOps platform",{"href":88,"dataGaName":531,"dataGaLocation":509},"devsecops platform",[533],{"title":221,"links":534},[535,539,544],{"text":536,"config":537},"View plans",{"href":223,"dataGaName":538,"dataGaLocation":509},"view plans",{"text":540,"config":541},"Why Premium?",{"href":542,"dataGaName":543,"dataGaLocation":509},"/pricing/premium/","why premium",{"text":545,"config":546},"Why Ultimate?",{"href":547,"dataGaName":548,"dataGaLocation":509},"/pricing/ultimate/","why ultimate",{"title":550,"links":551},"Solutions",[552,557,559,561,566,571,575,578,582,587,589,592,595,600],{"text":553,"config":554},"Digital transformation",{"href":555,"dataGaName":556,"dataGaLocation":509},"/topics/digital-transformation/","digital transformation",{"text":167,"config":558},{"href":169,"dataGaName":167,"dataGaLocation":509},{"text":156,"config":560},{"href":138,"dataGaName":139,"dataGaLocation":509},{"text":562,"config":563},"Agile development",{"href":564,"dataGaName":565,"dataGaLocation":509},"/solutions/agile-delivery/","agile delivery",{"text":567,"config":568},"Cloud transformation",{"href":569,"dataGaName":570,"dataGaLocation":509},"/topics/cloud-native/","cloud transformation",{"text":572,"config":573},"SCM",{"href":152,"dataGaName":574,"dataGaLocation":509},"source code management",{"text":142,"config":576},{"href":144,"dataGaName":577,"dataGaLocation":509},"continuous integration & delivery",{"text":579,"config":580},"Value stream management",{"href":196,"dataGaName":581,"dataGaLocation":509},"value stream management",{"text":583,"config":584},"GitOps",{"href":585,"dataGaName":586,"dataGaLocation":509},"/solutions/gitops/","gitops",{"text":206,"config":588},{"href":208,"dataGaName":209,"dataGaLocation":509},{"text":590,"config":591},"Small business",{"href":213,"dataGaName":214,"dataGaLocation":509},{"text":593,"config":594},"Public sector",{"href":218,"dataGaName":219,"dataGaLocation":509},{"text":596,"config":597},"Education",{"href":598,"dataGaName":599,"dataGaLocation":509},"/solutions/education/","education",{"text":601,"config":602},"Financial services",{"href":603,"dataGaName":604,"dataGaLocation":509},"/solutions/finance/","financial services",{"title":226,"links":606},[607,609,611,613,616,618,620,622,624,626,628,630,632],{"text":238,"config":608},{"href":240,"dataGaName":241,"dataGaLocation":509},{"text":243,"config":610},{"href":245,"dataGaName":246,"dataGaLocation":509},{"text":248,"config":612},{"href":250,"dataGaName":251,"dataGaLocation":509},{"text":253,"config":614},{"href":255,"dataGaName":615,"dataGaLocation":509},"docs",{"text":276,"config":617},{"href":278,"dataGaName":279,"dataGaLocation":509},{"text":271,"config":619},{"href":273,"dataGaName":274,"dataGaLocation":509},{"text":281,"config":621},{"href":283,"dataGaName":284,"dataGaLocation":509},{"text":294,"config":623},{"href":296,"dataGaName":297,"dataGaLocation":509},{"text":286,"config":625},{"href":288,"dataGaName":289,"dataGaLocation":509},{"text":299,"config":627},{"href":301,"dataGaName":302,"dataGaLocation":509},{"text":304,"config":629},{"href":306,"dataGaName":307,"dataGaLocation":509},{"text":309,"config":631},{"href":311,"dataGaName":312,"dataGaLocation":509},{"text":314,"config":633},{"href":316,"dataGaName":317,"dataGaLocation":509},{"title":332,"links":635},[636,638,640,642,644,646,648,652,657,659,661,663],{"text":339,"config":637},{"href":341,"dataGaName":334,"dataGaLocation":509},{"text":344,"config":639},{"href":346,"dataGaName":347,"dataGaLocation":509},{"text":352,"config":641},{"href":354,"dataGaName":355,"dataGaLocation":509},{"text":357,"config":643},{"href":359,"dataGaName":360,"dataGaLocation":509},{"text":362,"config":645},{"href":364,"dataGaName":365,"dataGaLocation":509},{"text":367,"config":647},{"href":369,"dataGaName":370,"dataGaLocation":509},{"text":649,"config":650},"Sustainability",{"href":651,"dataGaName":649,"dataGaLocation":509},"/sustainability/",{"text":653,"config":654},"Diversity, inclusion and belonging (DIB)",{"href":655,"dataGaName":656,"dataGaLocation":509},"/diversity-inclusion-belonging/","Diversity, inclusion and belonging",{"text":372,"config":658},{"href":374,"dataGaName":375,"dataGaLocation":509},{"text":382,"config":660},{"href":384,"dataGaName":385,"dataGaLocation":509},{"text":387,"config":662},{"href":389,"dataGaName":390,"dataGaLocation":509},{"text":664,"config":665},"Modern Slavery Transparency Statement",{"href":666,"dataGaName":667,"dataGaLocation":509},"https://handbook.gitlab.com/handbook/legal/modern-slavery-act-transparency-statement/","modern slavery transparency statement",{"title":669,"links":670},"Contact Us",[671,674,676,678,683,688,693],{"text":672,"config":673},"Contact an expert",{"href":70,"dataGaName":71,"dataGaLocation":509},{"text":401,"config":675},{"href":403,"dataGaName":404,"dataGaLocation":509},{"text":406,"config":677},{"href":408,"dataGaName":409,"dataGaLocation":509},{"text":679,"config":680},"Status",{"href":681,"dataGaName":682,"dataGaLocation":509},"https://status.gitlab.com/","status",{"text":684,"config":685},"Terms of use",{"href":686,"dataGaName":687,"dataGaLocation":509},"/terms/","terms of use",{"text":689,"config":690},"Privacy statement",{"href":691,"dataGaName":692,"dataGaLocation":509},"/privacy/","privacy statement",{"text":694,"config":695},"Cookie preferences",{"dataGaName":696,"dataGaLocation":509,"id":697,"isOneTrustButton":124},"cookie preferences","ot-sdk-btn",{"items":699},[700,702,704],{"text":684,"config":701},{"href":686,"dataGaName":687,"dataGaLocation":509},{"text":689,"config":703},{"href":691,"dataGaName":692,"dataGaLocation":509},{"text":694,"config":705},{"dataGaName":696,"dataGaLocation":509,"id":697,"isOneTrustButton":124},"content:shared:en-us:main-footer.yml","Main Footer","shared/en-us/main-footer.yml","shared/en-us/main-footer",{"_path":711,"_dir":55,"_draft":6,"_partial":6,"_locale":7,"header":712,"eyebrow":713,"blurb":714,"button":715,"secondaryButton":719,"_id":721,"_type":48,"title":722,"_source":49,"_file":723,"_stem":724,"_extension":52},"/shared/en-us/next-steps","Start shipping better software faster","50%+ of the Fortune 100 trust GitLab","See what your team can do with the intelligent\n\n\nDevSecOps platform.\n",{"text":63,"config":716},{"href":717,"dataGaName":66,"dataGaLocation":718},"https://gitlab.com/-/trial_registrations/new?glm_content=default-saas-trial&glm_source=about.gitlab.com/","feature",{"text":68,"config":720},{"href":70,"dataGaName":71,"dataGaLocation":718},"content:shared:en-us:next-steps.yml","Next Steps","shared/en-us/next-steps.yml","shared/en-us/next-steps",1758326276935]