►
From YouTube: GitLab 13.1 Kickoff - Defend:Threat Insights
Description
Defend:Threat Insights will look to deliver Exportable Group Security reports along with UX enhancements for 13.1.
https://about.gitlab.com/direction/defend/vulnerability_management/
A
So
I'll
start
by
having
a
quick
mention
of
a
look
back
13.0
which,
by
the
time
you
see
this,
we'll
have
just
released
or
is
just
about
to
be
released.
The
big
item
for
that
was
the
long
waited
stand-alone
vulnerability
objects.
Now
what
standalone
vulnerability
objects
is
really
a
rear
kotecha
of
how
we
handle
the
vulnerabilities
that
are
detected
in
the
inter
branches
by
our
secure
security
scanners,
as
well
as
any
integrated
third-party
scanners.
So
this
is
a
huge
piece
of
work.
A
A
This
is
simply
when
you
were
on
a
your
one
of
your
group,
security
dashboards.
You
will
have
this
new
option
here
in
the
upper
right
and
what
that
does
is
just
when
you
you'll
see
a
little
note,
the
first
time
to
let
you
know
you
can
now
export
the
and
clicking
on
that
will
just
download
a
CSV
file
of
all
of
the
vulnerabilities
that
are
currently
in
that
group
dashboard
view.
A
So
you'll
get
the
same
things
that
you
see
in
the
project
and
the
instance
level
reports
you'll
have
what
project
it
actually
came
from
since
this
is
a
group
level
view
things
like
name
any
sort
of
identifier
like
a
CV
E,
as
well
as
the
scanner
type
and
the
detailed
information.
So
this
is
really
handy.
If
you
need
to
slice
and
dice
the
data
a
little
bit,
you
can
open
it
up
in
something
like
Excel
and
make
your
own
charts
or
import
it
into
another
dashboard.
A
A
A
Well,
the
behavior!
Actually
mirrors
what
you
see
in
many
other
parts
of
the
application,
if
instance
like
the
to-do
list
or
an
issue
list,
it
resets
the
filters.
Well,
this
is
not
as
convenient
for
the
use
case
of
the
vulnerability
triage.
So
what
we're
going
to
do
is
we're
actually
adding
persistence
of
these
filters
if
you
go
directly
from
one
of
the
vulnerabilities
back
to
a
particular
dashboard.
A
Finally,
this
is
a
bit
of
a
UX
enhancement
and
one
of
the
feature,
but
one
of
the
things
that
we
still
need
to
carry
over
from
the
old
dashboard
model
is,
if
you
had
a
vulnerability
that
was
linked
or
where
you
had
created
an
issue
from
that
vulnerability
to
address
the
remediation,
we
provided
a
link
in
line
in
the
vulnerability
list
view
when
we
add
this
back
in.
We
want
to
take
this
as
an
opportunity
to
provide
a
little
bit
of
extra
status.
A
So
today,
what
you
would
see
is
just
a
little
green
checkmark,
letting
you
know
that
there's
an
issue
with
attach
to
it,
so
we
actually
want
to
go
step
further
and
show
you
is
the
issue
still
open
or
is
the
issue
closed
and
if
it's
closed
and
it's
not
you're
not
seeing
a
status
of
resolve
for
the
vulnerability?
That
may
be
a
good
indicator
that
you
need
to
go
check
and
see.
A
So
that's
what
we've
got
on
tap
for
13.1.
Of
course
there
are
a
lot
of
other
small
UX
items
and
the
requisite
fixes
that
are.
You
know.
People
have
reported
through
the
13
dotto
process
and
so
there's
a
lot
of
other
things
that
are
going
to
be
in
there.
But
these
are
the
three
main
feature
items
that
we're
going
to
be
targeting
and
we
look
forward
to
seeing
it
at
the
end
of
the
thirteen
one
release.
Thanks
for
watching.