GitLab Security Releases
GitLab publishes security release posts for GitLab CE and EE, bundling the CVEs fixed in each patch release. Self-managed GitLab instances are internet-facing by design, which makes tracking these releases essential for anyone not on gitlab.com.
CSIRTS.com ingests GitLab Security Releases every 3 hours, normalizes each advisory into a common schema and cross-references every CVE against the CISA KEV catalog and public exploit datasets. Publishes security release announcements for GitLab CE/EE. Also available via RSS, JSON API and the MCP server.