WhiteSource for GitLab

WhiteSource for GitLab integrates into your native GitLab environment, scanning your repositories, as part of your WhiteSource account. It is an integrated product within GitLab that detects all of your open-source components and displays all vulnerabilities for these components.

WhiteSource for GitLab provides you with information on vulnerable and outdated open-source components and generates comprehensive up-to-date reports in the Issues tab and the security dashboard of the scanned project. In addition, you will be able to view the scanned projects in the WhiteSource portal.

WhiteSource for GitLab is part of WhiteSource for Developers and includes automated fix Merge Requests as well as Automated Dependency Updates (as part of WhiteSource Renovate) with WhiteSource Remediate.

Refer to the following sections: