[{"data":1,"prerenderedAt":2180},["ShallowReactive",2],{"/de-de/blog/auto-dismiss-vulnerability-management-policy":3,"navigation-de-de":1413,"banner-de-de":1832,"footer-de-de":1842,"blog-post-authors-de-de-Grant Hickman":2080,"blog-related-posts-de-de-auto-dismiss-vulnerability-management-policy":2095,"blog-promotions-de-de":2118,"next-steps-de-de":2170},{"id":4,"title":5,"authors":6,"body":8,"category":1392,"date":1393,"description":1394,"extension":1395,"externalUrl":1396,"featured":1397,"heroImage":1398,"meta":1399,"navigation":1397,"path":1400,"seo":1401,"slug":1404,"stem":1405,"tags":1406,"template":1411,"updatedDate":1396,"__hash__":1412},"blogPosts/de-de/blog/auto-dismiss-vulnerability-management-policy.md","Schwachstellen-Rauschen mit Auto-Dismiss-Richtlinien gezielt reduzieren",[7],"Grant Hickman",{"type":9,"value":10,"toc":1378},"minimark",[11,15,18,23,26,55,59,90,94,97,102,105,370,374,389,564,568,571,747,751,754,928,932,935,1075,1079,1086,1191,1195,1311,1315,1318,1353,1363,1374],[12,13,14],"p",{},"Security-Scanner sind unverzichtbar – doch nicht jeder Fund erfordert eine Reaktion. Testcode, eingebettete Abhängigkeiten, generierte Dateien und bekannte False Positives erzeugen Rauschen, das die tatsächlich relevanten Schwachstellen überlagert. Durch das manuelle Schließen immer gleicher, irrelevanter Findings über Projekte und Pipelines hinweg entsteht repetitiver Aufwand im Security-Team. Die Folge: langsameres Triage, Alert-Fatigue und Reibung mit Entwicklungsteams – bis hin zu sinkender Akzeptanz des Security-Scannings selbst.",[12,16,17],{},"Mit den Auto-Dismiss-Richtlinien für Schwachstellen lassen sich Triage-Entscheidungen einmalig in Richtlinien festlegen und automatisch auf jede Pipeline des Standard-Branches anwenden. Kriterien werden anhand von Dateipfad, Verzeichnis oder Schwachstellen-Kennung (CVE, CWE) definiert, ein Abweisungsgrund festgelegt – und GitLab übernimmt den Rest.",[19,20,22],"h2",{"id":21},"warum-auto-dismiss","Warum Auto-Dismiss?",[12,24,25],{},"Auto-Dismiss-Richtlinien ermöglichen Security-Teams:",[27,28,29,37,43,49],"ul",{},[30,31,32,36],"li",{},[33,34,35],"strong",{},"Triage-Aufwand reduzieren",": Findings in Testcode, eingebetteten Abhängigkeiten und generierten Dateien werden automatisch abgewiesen.",[30,38,39,42],{},[33,40,41],{},"Entscheidungen organisationsweit durchsetzen",": Bekannte False Positives lassen sich zentral über die gesamte Organisation hinweg abweisen.",[30,44,45,48],{},[33,46,47],{},"Prüfnachweise sicherstellen",": Jeder automatisch abgewiesene Fund enthält einen dokumentierten Abweisungsgrund mit Verweis auf die auslösende Richtlinie.",[30,50,51,54],{},[33,52,53],{},"Datenbasis erhalten",": Im Gegensatz zu Scanner-Ausschlüssen verbleiben abgewiesene Schwachstellen im Report – Entscheidungen lassen sich bei veränderten Bedingungen jederzeit überprüfen.",[19,56,58],{"id":57},"so-funktionieren-auto-dismiss-richtlinien","So funktionieren Auto-Dismiss-Richtlinien",[60,61,62,68,78,84],"ol",{},[30,63,64,67],{},[33,65,66],{},"Richtlinie definieren",": In einer YAML-Richtliniendatei Abgleichkriterien (Dateipfad, Verzeichnis oder Kennung) und einen Abweisungsgrund festlegen.",[30,69,70,73,74,77],{},[33,71,72],{},"Zusammenführen und aktivieren",": Richtlinie über ",[33,75,76],{},"Secure > Policies > New policy > Vulnerability management policy"," erstellen. Nach dem Merge des MR ist sie aktiv.",[30,79,80,83],{},[33,81,82],{},"Pipeline ausführen",": Bei jeder Pipeline des Standard-Branches werden übereinstimmende Schwachstellen automatisch auf „Dismissed\" gesetzt und mit dem festgelegten Grund versehen. Pro Ausführung werden bis zu 1.000 Schwachstellen verarbeitet.",[30,85,86,89],{},[33,87,88],{},"Ergebnis prüfen",": Den Vulnerability-Report nach Status „Dismissed\" filtern – so lässt sich nachvollziehen, welche Findings bereinigt wurden und ob die richtigen Einträge erfasst werden.",[19,91,93],{"id":92},"anwendungsfälle-mit-einsatzbereiten-konfigurationen","Anwendungsfälle mit einsatzbereiten Konfigurationen",[12,95,96],{},"Jedes Beispiel enthält eine Richtlinienkonfiguration, die direkt kopiert, angepasst und eingesetzt werden kann.",[98,99,101],"h3",{"id":100},"_1-schwachstellen-in-testcode-abweisen","1. Schwachstellen in Testcode abweisen",[12,103,104],{},"SAST- und Dependency-Scanner melden hartcodierte Zugangsdaten, unsichere Fixtures und entwicklungsspezifische Abhängigkeiten in Testverzeichnissen. Diese stellen kein Produktionsrisiko dar.",[106,107,112],"pre",{"className":108,"code":109,"language":110,"meta":111,"style":111},"language-yaml shiki shiki-themes github-light","vulnerability_management_policy:\n  - name: \"Dismiss test code vulnerabilities\"\n    description: \"Auto-dismiss findings in test directories\"\n    enabled: true\n    rules:\n      - type: detected\n        criteria:\n          - type: file_path\n            value: \"test/**/*\"\n      - type: detected\n        criteria:\n          - type: file_path\n            value: \"tests/**/*\"\n      - type: detected\n        criteria:\n          - type: file_path\n            value: \"spec/**/*\"\n      - type: detected\n        criteria:\n          - type: directory\n            value: \"__tests__/*\"\n    actions:\n      - type: auto_dismiss\n        dismissal_reason: used_in_tests\n\n","yaml","",[113,114,115,128,144,155,167,175,189,197,210,221,232,239,250,260,271,278,289,299,310,317,329,339,347,359],"code",{"__ignoreMap":111},[116,117,120,124],"span",{"class":118,"line":119},"line",1,[116,121,123],{"class":122},"shJU0","vulnerability_management_policy",[116,125,127],{"class":126},"sgsFI",":\n",[116,129,131,134,137,140],{"class":118,"line":130},2,[116,132,133],{"class":126},"  - ",[116,135,136],{"class":122},"name",[116,138,139],{"class":126},": ",[116,141,143],{"class":142},"sYBdl","\"Dismiss test code vulnerabilities\"\n",[116,145,147,150,152],{"class":118,"line":146},3,[116,148,149],{"class":122},"    description",[116,151,139],{"class":126},[116,153,154],{"class":142},"\"Auto-dismiss findings in test directories\"\n",[116,156,158,161,163],{"class":118,"line":157},4,[116,159,160],{"class":122},"    enabled",[116,162,139],{"class":126},[116,164,166],{"class":165},"sYu0t","true\n",[116,168,170,173],{"class":118,"line":169},5,[116,171,172],{"class":122},"    rules",[116,174,127],{"class":126},[116,176,178,181,184,186],{"class":118,"line":177},6,[116,179,180],{"class":126},"      - ",[116,182,183],{"class":122},"type",[116,185,139],{"class":126},[116,187,188],{"class":142},"detected\n",[116,190,192,195],{"class":118,"line":191},7,[116,193,194],{"class":122},"        criteria",[116,196,127],{"class":126},[116,198,200,203,205,207],{"class":118,"line":199},8,[116,201,202],{"class":126},"          - ",[116,204,183],{"class":122},[116,206,139],{"class":126},[116,208,209],{"class":142},"file_path\n",[116,211,213,216,218],{"class":118,"line":212},9,[116,214,215],{"class":122},"            value",[116,217,139],{"class":126},[116,219,220],{"class":142},"\"test/**/*\"\n",[116,222,224,226,228,230],{"class":118,"line":223},10,[116,225,180],{"class":126},[116,227,183],{"class":122},[116,229,139],{"class":126},[116,231,188],{"class":142},[116,233,235,237],{"class":118,"line":234},11,[116,236,194],{"class":122},[116,238,127],{"class":126},[116,240,242,244,246,248],{"class":118,"line":241},12,[116,243,202],{"class":126},[116,245,183],{"class":122},[116,247,139],{"class":126},[116,249,209],{"class":142},[116,251,253,255,257],{"class":118,"line":252},13,[116,254,215],{"class":122},[116,256,139],{"class":126},[116,258,259],{"class":142},"\"tests/**/*\"\n",[116,261,263,265,267,269],{"class":118,"line":262},14,[116,264,180],{"class":126},[116,266,183],{"class":122},[116,268,139],{"class":126},[116,270,188],{"class":142},[116,272,274,276],{"class":118,"line":273},15,[116,275,194],{"class":122},[116,277,127],{"class":126},[116,279,281,283,285,287],{"class":118,"line":280},16,[116,282,202],{"class":126},[116,284,183],{"class":122},[116,286,139],{"class":126},[116,288,209],{"class":142},[116,290,292,294,296],{"class":118,"line":291},17,[116,293,215],{"class":122},[116,295,139],{"class":126},[116,297,298],{"class":142},"\"spec/**/*\"\n",[116,300,302,304,306,308],{"class":118,"line":301},18,[116,303,180],{"class":126},[116,305,183],{"class":122},[116,307,139],{"class":126},[116,309,188],{"class":142},[116,311,313,315],{"class":118,"line":312},19,[116,314,194],{"class":122},[116,316,127],{"class":126},[116,318,320,322,324,326],{"class":118,"line":319},20,[116,321,202],{"class":126},[116,323,183],{"class":122},[116,325,139],{"class":126},[116,327,328],{"class":142},"directory\n",[116,330,332,334,336],{"class":118,"line":331},21,[116,333,215],{"class":122},[116,335,139],{"class":126},[116,337,338],{"class":142},"\"__tests__/*\"\n",[116,340,342,345],{"class":118,"line":341},22,[116,343,344],{"class":122},"    actions",[116,346,127],{"class":126},[116,348,350,352,354,356],{"class":118,"line":349},23,[116,351,180],{"class":126},[116,353,183],{"class":122},[116,355,139],{"class":126},[116,357,358],{"class":142},"auto_dismiss\n",[116,360,362,365,367],{"class":118,"line":361},24,[116,363,364],{"class":122},"        dismissal_reason",[116,366,139],{"class":126},[116,368,369],{"class":142},"used_in_tests\n",[98,371,373],{"id":372},"_2-eingebetteten-und-drittanbieter-code-abweisen","2. Eingebetteten und Drittanbieter-Code abweisen",[12,375,376,377,380,381,384,385,388],{},"Schwachstellen in ",[113,378,379],{},"vendor/",", ",[113,382,383],{},"third_party/"," oder eingecheckten ",[113,386,387],{},"node_modules"," werden upstream verwaltet und sind für das eigene Team nicht direkt behebbar.",[106,390,392],{"className":108,"code":391,"language":110,"meta":111,"style":111},"vulnerability_management_policy:\n  - name: \"Dismiss vendored dependency findings\"\n    description: \"Findings in vendored code are managed upstream\"\n    enabled: true\n    rules:\n      - type: detected\n        criteria:\n          - type: directory\n            value: \"vendor/*\"\n      - type: detected\n        criteria:\n          - type: directory\n            value: \"third_party/*\"\n      - type: detected\n        criteria:\n          - type: directory\n            value: \"vendored/*\"\n    actions:\n      - type: auto_dismiss\n        dismissal_reason: not_applicable\n\n",[113,393,394,400,411,420,428,434,444,450,460,469,479,485,495,504,514,520,530,539,545,555],{"__ignoreMap":111},[116,395,396,398],{"class":118,"line":119},[116,397,123],{"class":122},[116,399,127],{"class":126},[116,401,402,404,406,408],{"class":118,"line":130},[116,403,133],{"class":126},[116,405,136],{"class":122},[116,407,139],{"class":126},[116,409,410],{"class":142},"\"Dismiss vendored dependency findings\"\n",[116,412,413,415,417],{"class":118,"line":146},[116,414,149],{"class":122},[116,416,139],{"class":126},[116,418,419],{"class":142},"\"Findings in vendored code are managed upstream\"\n",[116,421,422,424,426],{"class":118,"line":157},[116,423,160],{"class":122},[116,425,139],{"class":126},[116,427,166],{"class":165},[116,429,430,432],{"class":118,"line":169},[116,431,172],{"class":122},[116,433,127],{"class":126},[116,435,436,438,440,442],{"class":118,"line":177},[116,437,180],{"class":126},[116,439,183],{"class":122},[116,441,139],{"class":126},[116,443,188],{"class":142},[116,445,446,448],{"class":118,"line":191},[116,447,194],{"class":122},[116,449,127],{"class":126},[116,451,452,454,456,458],{"class":118,"line":199},[116,453,202],{"class":126},[116,455,183],{"class":122},[116,457,139],{"class":126},[116,459,328],{"class":142},[116,461,462,464,466],{"class":118,"line":212},[116,463,215],{"class":122},[116,465,139],{"class":126},[116,467,468],{"class":142},"\"vendor/*\"\n",[116,470,471,473,475,477],{"class":118,"line":223},[116,472,180],{"class":126},[116,474,183],{"class":122},[116,476,139],{"class":126},[116,478,188],{"class":142},[116,480,481,483],{"class":118,"line":234},[116,482,194],{"class":122},[116,484,127],{"class":126},[116,486,487,489,491,493],{"class":118,"line":241},[116,488,202],{"class":126},[116,490,183],{"class":122},[116,492,139],{"class":126},[116,494,328],{"class":142},[116,496,497,499,501],{"class":118,"line":252},[116,498,215],{"class":122},[116,500,139],{"class":126},[116,502,503],{"class":142},"\"third_party/*\"\n",[116,505,506,508,510,512],{"class":118,"line":262},[116,507,180],{"class":126},[116,509,183],{"class":122},[116,511,139],{"class":126},[116,513,188],{"class":142},[116,515,516,518],{"class":118,"line":273},[116,517,194],{"class":122},[116,519,127],{"class":126},[116,521,522,524,526,528],{"class":118,"line":280},[116,523,202],{"class":126},[116,525,183],{"class":122},[116,527,139],{"class":126},[116,529,328],{"class":142},[116,531,532,534,536],{"class":118,"line":291},[116,533,215],{"class":122},[116,535,139],{"class":126},[116,537,538],{"class":142},"\"vendored/*\"\n",[116,540,541,543],{"class":118,"line":301},[116,542,344],{"class":122},[116,544,127],{"class":126},[116,546,547,549,551,553],{"class":118,"line":312},[116,548,180],{"class":126},[116,550,183],{"class":122},[116,552,139],{"class":126},[116,554,358],{"class":142},[116,556,557,559,561],{"class":118,"line":319},[116,558,364],{"class":122},[116,560,139],{"class":126},[116,562,563],{"class":142},"not_applicable\n",[98,565,567],{"id":566},"_3-falsch-positiv-cves-abweisen","3. Falsch-Positiv-CVEs abweisen",[12,569,570],{},"Bestimmte CVEs werden wiederholt gemeldet, gelten im eigenen Nutzungskontext aber als nicht zutreffend. Bisher wurden diese bei jedem Auftreten manuell abgewiesen. Die Beispiel-CVEs unten durch eigene ersetzen.",[106,572,574],{"className":108,"code":573,"language":110,"meta":111,"style":111},"vulnerability_management_policy:\n  - name: \"Dismiss known false positive CVEs\"\n    description: \"CVEs confirmed as false positives for our environment\"\n    enabled: true\n    rules:\n      - type: detected\n        criteria:\n          - type: identifier\n            value: \"CVE-2023-44487\"\n      - type: detected\n        criteria:\n          - type: identifier\n            value: \"CVE-2024-29041\"\n      - type: detected\n        criteria:\n          - type: identifier\n            value: \"CVE-2023-26136\"\n    actions:\n      - type: auto_dismiss\n        dismissal_reason: false_positive\n\n",[113,575,576,582,593,602,610,616,626,632,643,652,662,668,678,687,697,703,713,722,728,738],{"__ignoreMap":111},[116,577,578,580],{"class":118,"line":119},[116,579,123],{"class":122},[116,581,127],{"class":126},[116,583,584,586,588,590],{"class":118,"line":130},[116,585,133],{"class":126},[116,587,136],{"class":122},[116,589,139],{"class":126},[116,591,592],{"class":142},"\"Dismiss known false positive CVEs\"\n",[116,594,595,597,599],{"class":118,"line":146},[116,596,149],{"class":122},[116,598,139],{"class":126},[116,600,601],{"class":142},"\"CVEs confirmed as false positives for our environment\"\n",[116,603,604,606,608],{"class":118,"line":157},[116,605,160],{"class":122},[116,607,139],{"class":126},[116,609,166],{"class":165},[116,611,612,614],{"class":118,"line":169},[116,613,172],{"class":122},[116,615,127],{"class":126},[116,617,618,620,622,624],{"class":118,"line":177},[116,619,180],{"class":126},[116,621,183],{"class":122},[116,623,139],{"class":126},[116,625,188],{"class":142},[116,627,628,630],{"class":118,"line":191},[116,629,194],{"class":122},[116,631,127],{"class":126},[116,633,634,636,638,640],{"class":118,"line":199},[116,635,202],{"class":126},[116,637,183],{"class":122},[116,639,139],{"class":126},[116,641,642],{"class":142},"identifier\n",[116,644,645,647,649],{"class":118,"line":212},[116,646,215],{"class":122},[116,648,139],{"class":126},[116,650,651],{"class":142},"\"CVE-2023-44487\"\n",[116,653,654,656,658,660],{"class":118,"line":223},[116,655,180],{"class":126},[116,657,183],{"class":122},[116,659,139],{"class":126},[116,661,188],{"class":142},[116,663,664,666],{"class":118,"line":234},[116,665,194],{"class":122},[116,667,127],{"class":126},[116,669,670,672,674,676],{"class":118,"line":241},[116,671,202],{"class":126},[116,673,183],{"class":122},[116,675,139],{"class":126},[116,677,642],{"class":142},[116,679,680,682,684],{"class":118,"line":252},[116,681,215],{"class":122},[116,683,139],{"class":126},[116,685,686],{"class":142},"\"CVE-2024-29041\"\n",[116,688,689,691,693,695],{"class":118,"line":262},[116,690,180],{"class":126},[116,692,183],{"class":122},[116,694,139],{"class":126},[116,696,188],{"class":142},[116,698,699,701],{"class":118,"line":273},[116,700,194],{"class":122},[116,702,127],{"class":126},[116,704,705,707,709,711],{"class":118,"line":280},[116,706,202],{"class":126},[116,708,183],{"class":122},[116,710,139],{"class":126},[116,712,642],{"class":142},[116,714,715,717,719],{"class":118,"line":291},[116,716,215],{"class":122},[116,718,139],{"class":126},[116,720,721],{"class":142},"\"CVE-2023-26136\"\n",[116,723,724,726],{"class":118,"line":301},[116,725,344],{"class":122},[116,727,127],{"class":126},[116,729,730,732,734,736],{"class":118,"line":312},[116,731,180],{"class":126},[116,733,183],{"class":122},[116,735,139],{"class":126},[116,737,358],{"class":142},[116,739,740,742,744],{"class":118,"line":319},[116,741,364],{"class":122},[116,743,139],{"class":126},[116,745,746],{"class":142},"false_positive\n",[98,748,750],{"id":749},"_4-generierten-und-automatisch-erstellten-code-abweisen","4. Generierten und automatisch erstellten Code abweisen",[12,752,753],{},"Protobuf-, gRPC-, OpenAPI-Generatoren und ORM-Scaffolding-Tools erzeugen Dateien mit gemeldeten Mustern, die vom eigenen Team nicht gepatcht werden können.",[106,755,757],{"className":108,"code":756,"language":110,"meta":111,"style":111},"vulnerability_management_policy:\n  - name: \"Dismiss generated code findings\"\n    description: \"Generated files are not authored by us\"\n    enabled: true\n    rules:\n      - type: detected\n        criteria:\n          - type: directory\n            value: \"generated/*\"\n      - type: detected\n        criteria:\n          - type: file_path\n            value: \"**/*.pb.go\"\n      - type: detected\n        criteria:\n          - type: file_path\n            value: \"**/*.generated.*\"\n    actions:\n      - type: auto_dismiss\n        dismissal_reason: not_applicable\n\n",[113,758,759,765,776,785,793,799,809,815,825,834,844,850,860,869,879,885,895,904,910,920],{"__ignoreMap":111},[116,760,761,763],{"class":118,"line":119},[116,762,123],{"class":122},[116,764,127],{"class":126},[116,766,767,769,771,773],{"class":118,"line":130},[116,768,133],{"class":126},[116,770,136],{"class":122},[116,772,139],{"class":126},[116,774,775],{"class":142},"\"Dismiss generated code findings\"\n",[116,777,778,780,782],{"class":118,"line":146},[116,779,149],{"class":122},[116,781,139],{"class":126},[116,783,784],{"class":142},"\"Generated files are not authored by us\"\n",[116,786,787,789,791],{"class":118,"line":157},[116,788,160],{"class":122},[116,790,139],{"class":126},[116,792,166],{"class":165},[116,794,795,797],{"class":118,"line":169},[116,796,172],{"class":122},[116,798,127],{"class":126},[116,800,801,803,805,807],{"class":118,"line":177},[116,802,180],{"class":126},[116,804,183],{"class":122},[116,806,139],{"class":126},[116,808,188],{"class":142},[116,810,811,813],{"class":118,"line":191},[116,812,194],{"class":122},[116,814,127],{"class":126},[116,816,817,819,821,823],{"class":118,"line":199},[116,818,202],{"class":126},[116,820,183],{"class":122},[116,822,139],{"class":126},[116,824,328],{"class":142},[116,826,827,829,831],{"class":118,"line":212},[116,828,215],{"class":122},[116,830,139],{"class":126},[116,832,833],{"class":142},"\"generated/*\"\n",[116,835,836,838,840,842],{"class":118,"line":223},[116,837,180],{"class":126},[116,839,183],{"class":122},[116,841,139],{"class":126},[116,843,188],{"class":142},[116,845,846,848],{"class":118,"line":234},[116,847,194],{"class":122},[116,849,127],{"class":126},[116,851,852,854,856,858],{"class":118,"line":241},[116,853,202],{"class":126},[116,855,183],{"class":122},[116,857,139],{"class":126},[116,859,209],{"class":142},[116,861,862,864,866],{"class":118,"line":252},[116,863,215],{"class":122},[116,865,139],{"class":126},[116,867,868],{"class":142},"\"**/*.pb.go\"\n",[116,870,871,873,875,877],{"class":118,"line":262},[116,872,180],{"class":126},[116,874,183],{"class":122},[116,876,139],{"class":126},[116,878,188],{"class":142},[116,880,881,883],{"class":118,"line":273},[116,882,194],{"class":122},[116,884,127],{"class":126},[116,886,887,889,891,893],{"class":118,"line":280},[116,888,202],{"class":126},[116,890,183],{"class":122},[116,892,139],{"class":126},[116,894,209],{"class":142},[116,896,897,899,901],{"class":118,"line":291},[116,898,215],{"class":122},[116,900,139],{"class":126},[116,902,903],{"class":142},"\"**/*.generated.*\"\n",[116,905,906,908],{"class":118,"line":301},[116,907,344],{"class":122},[116,909,127],{"class":126},[116,911,912,914,916,918],{"class":118,"line":312},[116,913,180],{"class":126},[116,915,183],{"class":122},[116,917,139],{"class":126},[116,919,358],{"class":142},[116,921,922,924,926],{"class":118,"line":319},[116,923,364],{"class":122},[116,925,139],{"class":126},[116,927,563],{"class":142},[98,929,931],{"id":930},"_5-durch-infrastruktur-abgemilderte-schwachstellen-abweisen","5. Durch Infrastruktur abgemilderte Schwachstellen abweisen",[12,933,934],{},"Schwachstellenklassen wie XSS (CWE-79) oder SQL-Injection (CWE-89), die durch WAF-Regeln oder Laufzeitschutz bereits adressiert sind. Diese Konfiguration nur einsetzen, wenn die abmildernden Kontrollen nachweislich vorhanden und durchgängig durchgesetzt sind – eine lückenhafte Durchsetzung macht die Abweisung ungültig.",[106,936,938],{"className":108,"code":937,"language":110,"meta":111,"style":111},"vulnerability_management_policy:\n  - name: \"Dismiss CWEs mitigated by WAF\"\n    description: \"XSS and SQLi mitigated by WAF rules\"\n    enabled: true\n    rules:\n      - type: detected\n        criteria:\n          - type: identifier\n            value: \"CWE-79\"\n      - type: detected\n        criteria:\n          - type: identifier\n            value: \"CWE-89\"\n    actions:\n      - type: auto_dismiss\n        dismissal_reason: mitigating_control\n\n",[113,939,940,946,957,966,974,980,990,996,1006,1015,1025,1031,1041,1050,1056,1066],{"__ignoreMap":111},[116,941,942,944],{"class":118,"line":119},[116,943,123],{"class":122},[116,945,127],{"class":126},[116,947,948,950,952,954],{"class":118,"line":130},[116,949,133],{"class":126},[116,951,136],{"class":122},[116,953,139],{"class":126},[116,955,956],{"class":142},"\"Dismiss CWEs mitigated by WAF\"\n",[116,958,959,961,963],{"class":118,"line":146},[116,960,149],{"class":122},[116,962,139],{"class":126},[116,964,965],{"class":142},"\"XSS and SQLi mitigated by WAF rules\"\n",[116,967,968,970,972],{"class":118,"line":157},[116,969,160],{"class":122},[116,971,139],{"class":126},[116,973,166],{"class":165},[116,975,976,978],{"class":118,"line":169},[116,977,172],{"class":122},[116,979,127],{"class":126},[116,981,982,984,986,988],{"class":118,"line":177},[116,983,180],{"class":126},[116,985,183],{"class":122},[116,987,139],{"class":126},[116,989,188],{"class":142},[116,991,992,994],{"class":118,"line":191},[116,993,194],{"class":122},[116,995,127],{"class":126},[116,997,998,1000,1002,1004],{"class":118,"line":199},[116,999,202],{"class":126},[116,1001,183],{"class":122},[116,1003,139],{"class":126},[116,1005,642],{"class":142},[116,1007,1008,1010,1012],{"class":118,"line":212},[116,1009,215],{"class":122},[116,1011,139],{"class":126},[116,1013,1014],{"class":142},"\"CWE-79\"\n",[116,1016,1017,1019,1021,1023],{"class":118,"line":223},[116,1018,180],{"class":126},[116,1020,183],{"class":122},[116,1022,139],{"class":126},[116,1024,188],{"class":142},[116,1026,1027,1029],{"class":118,"line":234},[116,1028,194],{"class":122},[116,1030,127],{"class":126},[116,1032,1033,1035,1037,1039],{"class":118,"line":241},[116,1034,202],{"class":126},[116,1036,183],{"class":122},[116,1038,139],{"class":126},[116,1040,642],{"class":142},[116,1042,1043,1045,1047],{"class":118,"line":252},[116,1044,215],{"class":122},[116,1046,139],{"class":126},[116,1048,1049],{"class":142},"\"CWE-89\"\n",[116,1051,1052,1054],{"class":118,"line":262},[116,1053,344],{"class":122},[116,1055,127],{"class":126},[116,1057,1058,1060,1062,1064],{"class":118,"line":273},[116,1059,180],{"class":126},[116,1061,183],{"class":122},[116,1063,139],{"class":126},[116,1065,358],{"class":142},[116,1067,1068,1070,1072],{"class":118,"line":280},[116,1069,364],{"class":122},[116,1071,139],{"class":126},[116,1073,1074],{"class":142},"mitigating_control\n",[98,1076,1078],{"id":1077},"_6-cve-familien-organisationsweit-abweisen","6. CVE-Familien organisationsweit abweisen",[12,1080,1081,1082,1085],{},"Bei einer Welle verwandter CVEs für eine weit verbreitete Bibliothek, die das Team bereits bewertet hat: Richtlinie auf Gruppenebene anwenden und über Dutzende Projekte hinweg abweisen. Das Wildcard-Muster (z. B. ",[113,1083,1084],{},"CVE-2021-44*",") erfasst alle CVEs mit diesem Präfix.",[106,1087,1089],{"className":108,"code":1088,"language":110,"meta":111,"style":111},"vulnerability_management_policy:\n  - name: \"Accept risk for log4j CVE family\"\n    description: \"Log4j CVEs mitigated by version pinning and WAF\"\n    enabled: true\n    rules:\n      - type: detected\n        criteria:\n          - type: identifier\n            value: \"CVE-2021-44*\"\n    actions:\n      - type: auto_dismiss\n        dismissal_reason: acceptable_risk\n\n",[113,1090,1091,1097,1108,1117,1125,1131,1141,1147,1157,1166,1172,1182],{"__ignoreMap":111},[116,1092,1093,1095],{"class":118,"line":119},[116,1094,123],{"class":122},[116,1096,127],{"class":126},[116,1098,1099,1101,1103,1105],{"class":118,"line":130},[116,1100,133],{"class":126},[116,1102,136],{"class":122},[116,1104,139],{"class":126},[116,1106,1107],{"class":142},"\"Accept risk for log4j CVE family\"\n",[116,1109,1110,1112,1114],{"class":118,"line":146},[116,1111,149],{"class":122},[116,1113,139],{"class":126},[116,1115,1116],{"class":142},"\"Log4j CVEs mitigated by version pinning and WAF\"\n",[116,1118,1119,1121,1123],{"class":118,"line":157},[116,1120,160],{"class":122},[116,1122,139],{"class":126},[116,1124,166],{"class":165},[116,1126,1127,1129],{"class":118,"line":169},[116,1128,172],{"class":122},[116,1130,127],{"class":126},[116,1132,1133,1135,1137,1139],{"class":118,"line":177},[116,1134,180],{"class":126},[116,1136,183],{"class":122},[116,1138,139],{"class":126},[116,1140,188],{"class":142},[116,1142,1143,1145],{"class":118,"line":191},[116,1144,194],{"class":122},[116,1146,127],{"class":126},[116,1148,1149,1151,1153,1155],{"class":118,"line":199},[116,1150,202],{"class":126},[116,1152,183],{"class":122},[116,1154,139],{"class":126},[116,1156,642],{"class":142},[116,1158,1159,1161,1163],{"class":118,"line":212},[116,1160,215],{"class":122},[116,1162,139],{"class":126},[116,1164,1165],{"class":142},"\"CVE-2021-44*\"\n",[116,1167,1168,1170],{"class":118,"line":223},[116,1169,344],{"class":122},[116,1171,127],{"class":126},[116,1173,1174,1176,1178,1180],{"class":118,"line":234},[116,1175,180],{"class":126},[116,1177,183],{"class":122},[116,1179,139],{"class":126},[116,1181,358],{"class":142},[116,1183,1184,1186,1188],{"class":118,"line":241},[116,1185,364],{"class":122},[116,1187,139],{"class":126},[116,1189,1190],{"class":142},"acceptable_risk\n",[19,1192,1194],{"id":1193},"kurzübersicht","Kurzübersicht",[1196,1197,1198,1211],"table",{},[1199,1200,1201],"thead",{},[1202,1203,1204,1208],"tr",{},[1205,1206,1207],"th",{},"Parameter",[1205,1209,1210],{},"Details",[1212,1213,1214,1247,1271,1281,1291,1301],"tbody",{},[1202,1215,1216,1222],{},[1217,1218,1219],"td",{},[33,1220,1221],{},"Kriterientypen",[1217,1223,1224,1227,1228,1231,1232,1235,1236,1231,1239,1242,1243,1246],{},[113,1225,1226],{},"file_path"," (Glob-Muster, z. B. ",[113,1229,1230],{},"test/**/*","), ",[113,1233,1234],{},"directory"," (z. B. ",[113,1237,1238],{},"vendor/*",[113,1240,1241],{},"identifier"," (CVE/CWE mit Wildcards, z. B. ",[113,1244,1245],{},"CVE-2023-*",")",[1202,1248,1249,1254],{},[1217,1250,1251],{},[33,1252,1253],{},"Abweisungsgründe",[1217,1255,1256,380,1259,380,1262,380,1265,380,1268],{},[113,1257,1258],{},"acceptable_risk",[113,1260,1261],{},"false_positive",[113,1263,1264],{},"mitigating_control",[113,1266,1267],{},"used_in_tests",[113,1269,1270],{},"not_applicable",[1202,1272,1273,1278],{},[1217,1274,1275],{},[33,1276,1277],{},"Kriterienlogik",[1217,1279,1280],{},"Mehrere Kriterien innerhalb einer Regel = UND (alle müssen zutreffen). Mehrere Regeln innerhalb einer Richtlinie = ODER (eine reicht).",[1202,1282,1283,1288],{},[1217,1284,1285],{},[33,1286,1287],{},"Limits",[1217,1289,1290],{},"3 Kriterien pro Regel, 5 Regeln pro Richtlinie, 5 Richtlinien pro Security-Policy-Projekt. Vulnerability-Management-Richtlinien verarbeiten pro Pipeline-Ausführung bis zu 1.000 Schwachstellen im Zielprojekt.",[1202,1292,1293,1298],{},[1217,1294,1295],{},[33,1296,1297],{},"Betroffene Status",[1217,1299,1300],{},"Needs triage, Confirmed",[1202,1302,1303,1308],{},[1217,1304,1305],{},[33,1306,1307],{},"Geltungsbereich",[1217,1309,1310],{},"Projektebene oder Gruppenebene (Gruppenebene gilt für alle enthaltenen Projekte)",[19,1312,1314],{"id":1313},"erste-schritte","Erste Schritte",[12,1316,1317],{},"So lassen sich Auto-Dismiss-Richtlinien einrichten:",[60,1319,1320,1326,1332,1338,1347],{},[30,1321,1322,1325],{},[33,1323,1324],{},"Rauschen identifizieren",": Den Vulnerability-Report öffnen und nach „Needs triage\" sortieren. Nach Mustern suchen: Testdateien, eingebetteter Code, CVEs, die in mehreren Projekten wiederholt auftauchen.",[30,1327,1328,1331],{},[33,1329,1330],{},"Anwendungsfall auswählen",": Mit dem Anwendungsfall beginnen, der die meisten Findings abdeckt.",[30,1333,1334,1337],{},[33,1335,1336],{},"Ausgangslage festhalten",": Anzahl der Schwachstellen mit Status „Needs triage\" vor Erstellung der Richtlinie notieren.",[30,1339,1340,1343,1344,1346],{},[33,1341,1342],{},"Erstellen und aktivieren",": Über ",[33,1345,76],{}," navigieren. Konfiguration aus dem gewählten Anwendungsfall einfügen, dann MR mergen.",[30,1348,1349,1352],{},[33,1350,1351],{},"Ergebnis validieren",": Nach der nächsten Pipeline des Standard-Branches den Report nach Status „Dismissed\" filtern und prüfen, ob die erwarteten Findings erfasst wurden.",[12,1354,1355,1356,1362],{},"Vollständige Konfigurationsdetails in der ",[1357,1358,1361],"a",{"href":1359,"rel":1360},"https://docs.gitlab.com/user/application_security/policies/vulnerability_management_policy/#auto-dismiss-policies",[],"Dokumentation zu Vulnerability-Management-Richtlinien",".",[1364,1365,1366],"blockquote",{},[12,1367,1368,1373],{},[1357,1369,1372],{"href":1370,"rel":1371},"https://about.gitlab.com/de-de/free-trial/",[],"GitLab Ultimate kostenlos testen"," und erste Auto-Dismiss-Richtlinie konfigurieren.",[1375,1376,1377],"style",{},"html pre.shiki code .shJU0, html code.shiki .shJU0{--shiki-default:#22863A}html pre.shiki code .sgsFI, html code.shiki .sgsFI{--shiki-default:#24292E}html pre.shiki code .sYBdl, html code.shiki .sYBdl{--shiki-default:#032F62}html pre.shiki code .sYu0t, html code.shiki .sYu0t{--shiki-default:#005CC5}html .default .shiki span {color: var(--shiki-default);background: var(--shiki-default-bg);font-style: var(--shiki-default-font-style);font-weight: var(--shiki-default-font-weight);text-decoration: var(--shiki-default-text-decoration);}html .shiki span {color: var(--shiki-default);background: var(--shiki-default-bg);font-style: var(--shiki-default-font-style);font-weight: var(--shiki-default-font-weight);text-decoration: var(--shiki-default-text-decoration);}",{"title":111,"searchDepth":130,"depth":130,"links":1379},[1380,1381,1382,1390,1391],{"id":21,"depth":130,"text":22},{"id":57,"depth":130,"text":58},{"id":92,"depth":130,"text":93,"children":1383},[1384,1385,1386,1387,1388,1389],{"id":100,"depth":146,"text":101},{"id":372,"depth":146,"text":373},{"id":566,"depth":146,"text":567},{"id":749,"depth":146,"text":750},{"id":930,"depth":146,"text":931},{"id":1077,"depth":146,"text":1078},{"id":1193,"depth":130,"text":1194},{"id":1313,"depth":130,"text":1314},"security","2026-03-25","Scanner-Rauschen reduzieren und relevante Schwachstellen priorisieren – mit Auto-Dismiss-Richtlinien in GitLab, mit Anwendungsfällen und Konfigurationen.","md",null,true,"https://res.cloudinary.com/about-gitlab-com/image/upload/v1774375772/kpaaaiqhokevxxeoxvu0.png",{},"/de-de/blog/auto-dismiss-vulnerability-management-policy",{"title":1402,"description":1403},"Schwachstellen-Rauschen mit Auto-Dismiss reduzieren","Vulnerability-Rauschen mit Auto-Dismiss-Richtlinien reduzieren. GitLab-Tutorial mit Anwendungsfällen, YAML-Konfigurationen und Kurzübersicht.","auto-dismiss-vulnerability-management-policy","de-de/blog/auto-dismiss-vulnerability-management-policy",[1392,1407,1408,1409,1410],"tutorial","DevSecOps","features","product","BlogPost","F_CyZ1MYm0nKKSJV3vManvob4KRG1Iv6MlQRfr2ULZM",{"logo":1414,"freeTrial":1419,"sales":1424,"login":1429,"items":1434,"search":1750,"minimal":1784,"duo":1802,"switchNav":1811,"pricingDeployment":1822},{"config":1415},{"href":1416,"dataGaName":1417,"dataGaLocation":1418},"/de-de/","gitlab logo","header",{"text":1420,"config":1421},"Kostenlose Testversion anfordern",{"href":1422,"dataGaName":1423,"dataGaLocation":1418},"https://gitlab.com/-/trial_registrations/new?glm_source=about.gitlab.com/de-de&glm_content=default-saas-trial/","free trial",{"text":1425,"config":1426},"Vertrieb kontaktieren",{"href":1427,"dataGaName":1428,"dataGaLocation":1418},"/de-de/sales/","sales",{"text":1430,"config":1431},"Anmelden",{"href":1432,"dataGaName":1433,"dataGaLocation":1418},"https://gitlab.com/users/sign_in/","sign in",[1435,1464,1566,1571,1674,1730],{"text":1436,"config":1437,"menu":1439},"Plattform",{"dataNavLevelOne":1438},"platform",{"type":1440,"columns":1441},"cards",[1442,1448,1456],{"title":1436,"description":1443,"link":1444},"Die intelligente Orchestrierungsplattform für DevSecOps",{"text":1445,"config":1446},"Die Plattform erkunden",{"href":1447,"dataGaName":1438,"dataGaLocation":1418},"/de-de/platform/",{"title":1449,"description":1450,"link":1451},"GitLab Duo Agent Platform","Agentische KI für den gesamten Software-Lebenszyklus",{"text":1452,"config":1453},"Lerne GitLab Duo kennen",{"href":1454,"dataGaName":1455,"dataGaLocation":1418},"/de-de/gitlab-duo-agent-platform/","gitlab duo agent platform",{"title":1457,"description":1458,"link":1459},"Warum GitLab?","Erfahre, warum sich Unternehmen für GitLab entscheiden",{"text":1460,"config":1461},"Mehr erfahren",{"href":1462,"dataGaName":1463,"dataGaLocation":1418},"/de-de/why-gitlab/","why gitlab",{"text":1465,"left":1397,"config":1466,"menu":1468},"Produkt",{"dataNavLevelOne":1467},"solutions",{"type":1469,"link":1470,"columns":1474,"feature":1545},"lists",{"text":1471,"config":1472},"Alle Lösungen anzeigen",{"href":1473,"dataGaName":1467,"dataGaLocation":1418},"/de-de/solutions/",[1475,1500,1523],{"title":1476,"description":1477,"link":1478,"items":1483},"Automatisierung","CI/CD und Automatisierung zur Beschleunigung der Bereitstellung",{"config":1479},{"icon":1480,"href":1481,"dataGaName":1482,"dataGaLocation":1418},"AutomatedCodeAlt","/de-de/solutions/delivery-automation/","automated software delivery",[1484,1488,1491,1496],{"text":1485,"config":1486},"CI/CD",{"href":1487,"dataGaLocation":1418,"dataGaName":1485},"/de-de/solutions/continuous-integration/",{"text":1449,"config":1489},{"href":1454,"dataGaLocation":1418,"dataGaName":1490},"gitlab duo agent platform - product menu",{"text":1492,"config":1493},"Quellcodeverwaltung",{"href":1494,"dataGaLocation":1418,"dataGaName":1495},"/de-de/solutions/source-code-management/","Source Code Management",{"text":1497,"config":1498},"Automatische Softwarebereitstellung",{"href":1481,"dataGaLocation":1418,"dataGaName":1499},"Automated software delivery",{"title":1501,"description":1502,"link":1503,"items":1508},"Sicherheit","Entwickle Code schneller ohne Abstriche bei der Sicherheit",{"config":1504},{"href":1505,"dataGaName":1506,"dataGaLocation":1418,"icon":1507},"/de-de/solutions/application-security-testing/","security and compliance","ShieldCheckLight",[1509,1513,1518],{"text":1510,"config":1511},"Anwendungssicherheitstests",{"href":1505,"dataGaName":1512,"dataGaLocation":1418},"Application security testing",{"text":1514,"config":1515},"Sicherheit der Software-Lieferkette",{"href":1516,"dataGaLocation":1418,"dataGaName":1517},"/de-de/solutions/supply-chain/","Software supply chain security",{"text":1519,"config":1520},"Software-Compliance",{"href":1521,"dataGaName":1522,"dataGaLocation":1418},"/de-de/solutions/software-compliance/","software compliance",{"title":1524,"link":1525,"items":1530},"Messung",{"config":1526},{"icon":1527,"href":1528,"dataGaName":1529,"dataGaLocation":1418},"DigitalTransformation","/de-de/solutions/visibility-measurement/","visibility and measurement",[1531,1535,1540],{"text":1532,"config":1533},"Sichtbarkeit und Messung",{"href":1528,"dataGaLocation":1418,"dataGaName":1534},"Visibility and Measurement",{"text":1536,"config":1537},"Wertstrommanagement",{"href":1538,"dataGaLocation":1418,"dataGaName":1539},"/de-de/solutions/value-stream-management/","Value Stream Management",{"text":1541,"config":1542},"Analysen und Einblicke",{"href":1543,"dataGaLocation":1418,"dataGaName":1544},"/de-de/solutions/analytics-and-insights/","Analytics and insights",{"title":1546,"type":1469,"items":1547},"GitLab für",[1548,1554,1560],{"text":1549,"config":1550},"Enterprise",{"icon":1551,"href":1552,"dataGaLocation":1418,"dataGaName":1553},"Building","/de-de/enterprise/","enterprise",{"text":1555,"config":1556},"Kleinunternehmen",{"icon":1557,"href":1558,"dataGaLocation":1418,"dataGaName":1559},"Work","/de-de/small-business/","small business",{"text":1561,"config":1562},"Öffentlicher Sektor",{"icon":1563,"href":1564,"dataGaLocation":1418,"dataGaName":1565},"Organization","/de-de/solutions/public-sector/","public sector",{"text":1567,"config":1568},"Preise",{"href":1569,"dataGaName":1570,"dataGaLocation":1418,"dataNavLevelOne":1570},"/de-de/pricing/","pricing",{"text":1572,"config":1573,"menu":1575},"Ressourcen",{"dataNavLevelOne":1574},"resources",{"type":1469,"link":1576,"columns":1580,"feature":1663},{"text":1577,"config":1578},"Alle Ressourcen anzeigen",{"href":1579,"dataGaName":1574,"dataGaLocation":1418},"/de-de/resources/",[1581,1613,1635],{"title":1314,"items":1582},[1583,1588,1593,1598,1603,1608],{"text":1584,"config":1585},"Installieren",{"href":1586,"dataGaName":1587,"dataGaLocation":1418},"/de-de/install/","install",{"text":1589,"config":1590},"Kurzanleitungen",{"href":1591,"dataGaName":1592,"dataGaLocation":1418},"/de-de/get-started/","quick setup checklists",{"text":1594,"config":1595},"Lernen",{"href":1596,"dataGaLocation":1418,"dataGaName":1597},"https://university.gitlab.com/","learn",{"text":1599,"config":1600},"Produktdokumentation",{"href":1601,"dataGaName":1602,"dataGaLocation":1418},"https://docs.gitlab.com/","product documentation",{"text":1604,"config":1605},"Best-Practice-Videos",{"href":1606,"dataGaName":1607,"dataGaLocation":1418},"/de-de/getting-started-videos/","best practice videos",{"text":1609,"config":1610},"Integrationen",{"href":1611,"dataGaName":1612,"dataGaLocation":1418},"/de-de/integrations/","integrations",{"title":1614,"items":1615},"Entdecken",[1616,1621,1626,1630],{"text":1617,"config":1618},"Kundenerfolge",{"href":1619,"dataGaName":1620,"dataGaLocation":1418},"/de-de/customers/","customer success stories",{"text":1622,"config":1623},"Blog",{"href":1624,"dataGaName":1625,"dataGaLocation":1418},"/de-de/blog/","blog",{"text":1627,"config":1628},"The Source",{"href":1629,"dataGaName":1625,"dataGaLocation":1418},"/de-de/the-source/",{"text":1631,"config":1632},"Remote",{"href":1633,"dataGaName":1634,"dataGaLocation":1418},"https://handbook.gitlab.com/handbook/company/culture/all-remote/","remote",{"title":1636,"items":1637},"Vernetzen",[1638,1643,1648,1653,1658],{"text":1639,"config":1640},"GitLab-Services",{"href":1641,"dataGaName":1642,"dataGaLocation":1418},"/de-de/services/","services",{"text":1644,"config":1645},"Community",{"href":1646,"dataGaName":1647,"dataGaLocation":1418},"/community/","community",{"text":1649,"config":1650},"Forum",{"href":1651,"dataGaName":1652,"dataGaLocation":1418},"https://forum.gitlab.com/","forum",{"text":1654,"config":1655},"Veranstaltungen",{"href":1656,"dataGaName":1657,"dataGaLocation":1418},"/events/","events",{"text":1659,"config":1660},"Partner",{"href":1661,"dataGaName":1662,"dataGaLocation":1418},"/de-de/partners/","partners",{"config":1664,"title":1667,"text":1668,"link":1669},{"background":1665,"textColor":1666},"url('https://res.cloudinary.com/about-gitlab-com/image/upload/v1777322348/qpq8yrgn8knii57omj0c.png')","#000","Neues bei GitLab","Über die neuesten Funktionen und Verbesserungen auf dem Laufenden bleiben.",{"text":1670,"config":1671},"Aktuelle Nachrichten",{"href":1672,"dataGaName":1673,"dataGaLocation":1418},"/de-de/whats-new/","whats new",{"text":1675,"config":1676,"menu":1678},"Company",{"dataNavLevelOne":1677},"company",{"type":1469,"columns":1679},[1680],{"items":1681},[1682,1687,1693,1695,1700,1705,1710,1715,1720,1725],{"text":1683,"config":1684},"Über",{"href":1685,"dataGaName":1686,"dataGaLocation":1418},"/de-de/company/","about",{"text":1688,"config":1689,"footerGa":1692},"Karriere",{"href":1690,"dataGaName":1691,"dataGaLocation":1418},"/jobs/","jobs",{"dataGaName":1691},{"text":1654,"config":1694},{"href":1656,"dataGaName":1657,"dataGaLocation":1418},{"text":1696,"config":1697},"Geschäftsführung",{"href":1698,"dataGaName":1699,"dataGaLocation":1418},"/company/team/e-group/","leadership",{"text":1701,"config":1702},"Handbuch",{"href":1703,"dataGaName":1704,"dataGaLocation":1418},"https://handbook.gitlab.com/","handbook",{"text":1706,"config":1707},"Investor Relations",{"href":1708,"dataGaName":1709,"dataGaLocation":1418},"https://ir.gitlab.com/","investor relations",{"text":1711,"config":1712},"Trust Center",{"href":1713,"dataGaName":1714,"dataGaLocation":1418},"/de-de/security/","trust center",{"text":1716,"config":1717},"AI Transparency Center",{"href":1718,"dataGaName":1719,"dataGaLocation":1418},"/de-de/ai-transparency-center/","ai transparency center",{"text":1721,"config":1722},"Newsletter",{"href":1723,"dataGaName":1724,"dataGaLocation":1418},"/company/contact/#contact-forms","newsletter",{"text":1726,"config":1727},"Presse",{"href":1728,"dataGaName":1729,"dataGaLocation":1418},"/press/","press",{"text":1731,"config":1732,"menu":1733},"Kontakt",{"dataNavLevelOne":1677},{"type":1469,"columns":1734},[1735],{"items":1736},[1737,1740,1745],{"text":1425,"config":1738},{"href":1427,"dataGaName":1739,"dataGaLocation":1418},"talk to sales",{"text":1741,"config":1742},"Support-Portal",{"href":1743,"dataGaName":1744,"dataGaLocation":1418},"https://support.gitlab.com","support portal",{"text":1746,"config":1747},"Kundenportal",{"href":1748,"dataGaName":1749,"dataGaLocation":1418},"https://customers.gitlab.com/customers/sign_in/","customer portal",{"close":1751,"login":1752,"suggestions":1759},"Schließen",{"text":1753,"link":1754},"Um Repositorys und Projekte zu durchsuchen, melde dich an bei",{"text":1755,"config":1756},"gitlab.com",{"href":1432,"dataGaName":1757,"dataGaLocation":1758},"search login","search",{"text":1760,"default":1761},"Vorschläge",[1762,1764,1769,1771,1776,1781],{"text":1449,"config":1763},{"href":1454,"dataGaName":1449,"dataGaLocation":1758},{"text":1765,"config":1766},"Codevorschläge (KI)",{"href":1767,"dataGaName":1768,"dataGaLocation":1758},"/de-de/solutions/code-suggestions/","Code Suggestions (AI)",{"text":1485,"config":1770},{"href":1487,"dataGaName":1485,"dataGaLocation":1758},{"text":1772,"config":1773},"GitLab auf AWS",{"href":1774,"dataGaName":1775,"dataGaLocation":1758},"/de-de/partners/technology-partners/aws/","GitLab on AWS",{"text":1777,"config":1778},"GitLab auf Google Cloud",{"href":1779,"dataGaName":1780,"dataGaLocation":1758},"/de-de/partners/technology-partners/google-cloud-platform/","GitLab on Google Cloud",{"text":1457,"config":1782},{"href":1462,"dataGaName":1783,"dataGaLocation":1758},"Why GitLab?",{"freeTrial":1785,"mobileIcon":1790,"desktopIcon":1795,"secondaryButton":1798},{"text":1786,"config":1787},"Kostenlos testen",{"href":1788,"dataGaName":1423,"dataGaLocation":1789},"https://gitlab.com/-/trials/new/","nav",{"altText":1791,"config":1792},"GitLab-Symbol",{"src":1793,"dataGaName":1794,"dataGaLocation":1789},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1758203874/jypbw1jx72aexsoohd7x.svg","gitlab icon",{"altText":1791,"config":1796},{"src":1797,"dataGaName":1794,"dataGaLocation":1789},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1758203875/gs4c8p8opsgvflgkswz9.svg",{"text":1314,"config":1799},{"href":1800,"dataGaName":1801,"dataGaLocation":1789},"https://gitlab.com/-/trial_registrations/new?glm_source=about.gitlab.com/de-de/get-started/","get started",{"freeTrial":1803,"mobileIcon":1807,"desktopIcon":1809},{"text":1804,"config":1805},"Mehr über GitLab Duo erfahren",{"href":1454,"dataGaName":1806,"dataGaLocation":1789},"gitlab duo",{"altText":1791,"config":1808},{"src":1793,"dataGaName":1794,"dataGaLocation":1789},{"altText":1791,"config":1810},{"src":1797,"dataGaName":1794,"dataGaLocation":1789},{"button":1812,"mobileIcon":1817,"desktopIcon":1819},{"text":1813,"config":1814},"/Option",{"href":1815,"dataGaName":1816,"dataGaLocation":1789},"#contact","switch",{"altText":1791,"config":1818},{"src":1793,"dataGaName":1794,"dataGaLocation":1789},{"altText":1791,"config":1820},{"src":1821,"dataGaName":1794,"dataGaLocation":1789},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1773335277/ohhpiuoxoldryzrnhfrh.png",{"freeTrial":1823,"mobileIcon":1828,"desktopIcon":1830},{"text":1824,"config":1825},"Zurück zur Preisübersicht",{"href":1569,"dataGaName":1826,"dataGaLocation":1789,"icon":1827},"back to pricing","GoBack",{"altText":1791,"config":1829},{"src":1793,"dataGaName":1794,"dataGaLocation":1789},{"altText":1791,"config":1831},{"src":1797,"dataGaName":1794,"dataGaLocation":1789},{"title":1833,"button":1834,"config":1839},"Sieh dir an, wie agentische KI die Softwarebereitstellung transformiert",{"text":1835,"config":1836},"Jetzt live bei GitLab Transcend am 10. Juni dabei sein",{"href":1837,"dataGaName":1838,"dataGaLocation":1418},"/de-de/events/transcend/virtual/","transcend event",{"layout":1840,"disabled":1841},"release",false,{"data":1843},{"text":1844,"source":1845,"edit":1851,"contribute":1856,"config":1861,"items":1866,"minimal":2071},"Git ist eine Marke von Software Freedom Conservancy und unsere Verwendung von „GitLab“ erfolgt unter Lizenz.",{"text":1846,"config":1847},"Quelltext der Seite anzeigen",{"href":1848,"dataGaName":1849,"dataGaLocation":1850},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/","page source","footer",{"text":1852,"config":1853},"Diese Seite bearbeiten",{"href":1854,"dataGaName":1855,"dataGaLocation":1850},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/-/blob/main/content/","web ide",{"text":1857,"config":1858},"Beteilige dich",{"href":1859,"dataGaName":1860,"dataGaLocation":1850},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/-/blob/main/CONTRIBUTING.md/","please contribute",{"twitter":1862,"facebook":1863,"youtube":1864,"linkedin":1865},"https://x.com/gitlab","https://www.facebook.com/gitlab","https://www.youtube.com/channel/UCnMGQ8QHMAnVIsI3xJrihhg","https://www.linkedin.com/company/gitlab-com",[1867,1912,1964,2006,2037],{"title":1567,"links":1868,"subMenu":1883},[1869,1873,1878],{"text":1870,"config":1871},"Tarife anzeigen",{"href":1569,"dataGaName":1872,"dataGaLocation":1850},"view plans",{"text":1874,"config":1875},"Vorteile von Premium",{"href":1876,"dataGaName":1877,"dataGaLocation":1850},"/de-de/pricing/premium/","why premium",{"text":1879,"config":1880},"Vorteile von Ultimate",{"href":1881,"dataGaName":1882,"dataGaLocation":1850},"/de-de/pricing/ultimate/","why ultimate",[1884],{"title":1731,"links":1885},[1886,1888,1890,1892,1897,1902,1907],{"text":1425,"config":1887},{"href":1427,"dataGaName":1428,"dataGaLocation":1850},{"text":1741,"config":1889},{"href":1743,"dataGaName":1744,"dataGaLocation":1850},{"text":1746,"config":1891},{"href":1748,"dataGaName":1749,"dataGaLocation":1850},{"text":1893,"config":1894},"Status",{"href":1895,"dataGaName":1896,"dataGaLocation":1850},"https://status.gitlab.com/","status",{"text":1898,"config":1899},"Nutzungsbedingungen",{"href":1900,"dataGaName":1901,"dataGaLocation":1850},"/terms/","terms of use",{"text":1903,"config":1904},"Datenschutzerklärung",{"href":1905,"dataGaName":1906,"dataGaLocation":1850},"/de-de/privacy/","privacy statement",{"text":1908,"config":1909},"Cookie-Einstellungen",{"dataGaName":1910,"dataGaLocation":1850,"id":1911,"isOneTrustButton":1397},"cookie preferences","ot-sdk-btn",{"title":1465,"links":1913,"subMenu":1922},[1914,1918],{"text":1915,"config":1916},"DevSecOps-Plattform",{"href":1447,"dataGaName":1917,"dataGaLocation":1850},"devsecops platform",{"text":1919,"config":1920},"KI-unterstützte Entwicklung",{"href":1454,"dataGaName":1921,"dataGaLocation":1850},"ai-assisted development",[1923],{"title":1924,"links":1925},"Themen",[1926,1930,1935,1940,1945,1949,1954,1959],{"text":1485,"config":1927},{"href":1928,"dataGaName":1929,"dataGaLocation":1850},"/de-de/topics/ci-cd/","cicd",{"text":1931,"config":1932},"GitOps",{"href":1933,"dataGaName":1934,"dataGaLocation":1850},"/de-de/topics/gitops/","gitops",{"text":1936,"config":1937},"DevOps",{"href":1938,"dataGaName":1939,"dataGaLocation":1850},"/de-de/topics/devops/","devops",{"text":1941,"config":1942},"Versionskontrolle",{"href":1943,"dataGaName":1944,"dataGaLocation":1850},"/de-de/topics/version-control/","version control",{"text":1408,"config":1946},{"href":1947,"dataGaName":1948,"dataGaLocation":1850},"/de-de/topics/devsecops/","devsecops",{"text":1950,"config":1951},"Cloud-nativ",{"href":1952,"dataGaName":1953,"dataGaLocation":1850},"/de-de/topics/cloud-native/","cloud native",{"text":1955,"config":1956},"KI für das Programmieren",{"href":1957,"dataGaName":1958,"dataGaLocation":1850},"/de-de/topics/devops/ai-for-coding/","ai for coding",{"text":1960,"config":1961},"Agentische KI",{"href":1962,"dataGaName":1963,"dataGaLocation":1850},"/de-de/topics/agentic-ai/","agentic ai",{"title":1965,"links":1966},"Lösungen",[1967,1970,1972,1977,1981,1984,1987,1990,1992,1994,1996,2001],{"text":1510,"config":1968},{"href":1505,"dataGaName":1969,"dataGaLocation":1850},"Application Security Testing",{"text":1497,"config":1971},{"href":1481,"dataGaName":1482,"dataGaLocation":1850},{"text":1973,"config":1974},"Agile Entwicklung",{"href":1975,"dataGaName":1976,"dataGaLocation":1850},"/de-de/solutions/agile-delivery/","agile delivery",{"text":1978,"config":1979},"SCM",{"href":1494,"dataGaName":1980,"dataGaLocation":1850},"source code management",{"text":1485,"config":1982},{"href":1487,"dataGaName":1983,"dataGaLocation":1850},"continuous integration & delivery",{"text":1536,"config":1985},{"href":1538,"dataGaName":1986,"dataGaLocation":1850},"value stream management",{"text":1931,"config":1988},{"href":1989,"dataGaName":1934,"dataGaLocation":1850},"/de-de/solutions/gitops/",{"text":1549,"config":1991},{"href":1552,"dataGaName":1553,"dataGaLocation":1850},{"text":1555,"config":1993},{"href":1558,"dataGaName":1559,"dataGaLocation":1850},{"text":1561,"config":1995},{"href":1564,"dataGaName":1565,"dataGaLocation":1850},{"text":1997,"config":1998},"Bildungswesen",{"href":1999,"dataGaName":2000,"dataGaLocation":1850},"/de-de/solutions/education/","education",{"text":2002,"config":2003},"Finanzdienstleistungen",{"href":2004,"dataGaName":2005,"dataGaLocation":1850},"/de-de/solutions/finance/","financial services",{"title":1572,"links":2007},[2008,2010,2012,2014,2017,2019,2022,2024,2026,2029,2031,2033,2035],{"text":1584,"config":2009},{"href":1586,"dataGaName":1587,"dataGaLocation":1850},{"text":1589,"config":2011},{"href":1591,"dataGaName":1592,"dataGaLocation":1850},{"text":1594,"config":2013},{"href":1596,"dataGaName":1597,"dataGaLocation":1850},{"text":1599,"config":2015},{"href":1601,"dataGaName":2016,"dataGaLocation":1850},"docs",{"text":1622,"config":2018},{"href":1624,"dataGaName":1625,"dataGaLocation":1850},{"text":2020,"config":2021},"Neuigkeiten",{"href":1672,"dataGaName":1673,"dataGaLocation":1850},{"text":1617,"config":2023},{"href":1619,"dataGaName":1620,"dataGaLocation":1850},{"text":1631,"config":2025},{"href":1633,"dataGaName":1634,"dataGaLocation":1850},{"text":2027,"config":2028},"GitLab Services",{"href":1641,"dataGaName":1642,"dataGaLocation":1850},{"text":1644,"config":2030},{"href":1646,"dataGaName":1647,"dataGaLocation":1850},{"text":1649,"config":2032},{"href":1651,"dataGaName":1652,"dataGaLocation":1850},{"text":1654,"config":2034},{"href":1656,"dataGaName":1657,"dataGaLocation":1850},{"text":1659,"config":2036},{"href":1661,"dataGaName":1662,"dataGaLocation":1850},{"title":2038,"links":2039},"Unternehmen",[2040,2042,2044,2046,2048,2050,2055,2060,2062,2064,2066],{"text":1683,"config":2041},{"href":1685,"dataGaName":1677,"dataGaLocation":1850},{"text":1688,"config":2043},{"href":1690,"dataGaName":1691,"dataGaLocation":1850},{"text":1696,"config":2045},{"href":1698,"dataGaName":1699,"dataGaLocation":1850},{"text":1701,"config":2047},{"href":1703,"dataGaName":1704,"dataGaLocation":1850},{"text":1706,"config":2049},{"href":1708,"dataGaName":1709,"dataGaLocation":1850},{"text":2051,"config":2052},"Nachhaltigkeit",{"href":2053,"dataGaName":2054,"dataGaLocation":1850},"/sustainability/","Sustainability",{"text":2056,"config":2057},"Vielfalt, Inklusion und Zugehörigkeit",{"href":2058,"dataGaName":2059,"dataGaLocation":1850},"/de-de/diversity-inclusion-belonging/","Diversity, inclusion and belonging",{"text":1711,"config":2061},{"href":1713,"dataGaName":1714,"dataGaLocation":1850},{"text":1721,"config":2063},{"href":1723,"dataGaName":1724,"dataGaLocation":1850},{"text":1726,"config":2065},{"href":1728,"dataGaName":1729,"dataGaLocation":1850},{"text":2067,"config":2068},"Transparenzerklärung zu moderner Sklaverei",{"href":2069,"dataGaName":2070,"dataGaLocation":1850},"https://handbook.gitlab.com/handbook/legal/modern-slavery-act-transparency-statement/","modern slavery transparency statement",{"items":2072},[2073,2075,2078],{"text":1898,"config":2074},{"href":1900,"dataGaName":1901,"dataGaLocation":1850},{"text":2076,"config":2077},"Cookies",{"dataGaName":1910,"dataGaLocation":1850,"id":1911,"isOneTrustButton":1397},{"text":1903,"config":2079},{"href":1905,"dataGaName":1906,"dataGaLocation":1850},[2081],{"id":2082,"title":7,"body":1396,"config":2083,"content":2085,"description":1396,"extension":2089,"meta":2090,"navigation":1397,"path":2091,"seo":2092,"stem":2093,"__hash__":2094},"blogAuthors/en-us/blog/authors/grant-hickman.yml",{"template":2084},"BlogAuthor",{"name":7,"config":2086},{"headshot":2087,"ctfId":2088},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1749682570/Blog/Author%20Headshots/g.png","ghickman","yml",{},"/en-us/blog/authors/grant-hickman",{},"en-us/blog/authors/grant-hickman","3OY7ZjUzeOb_im7m1kimID61q_0OEhuzipAc3AHq2WM",[2096,2104,2111],{"title":2097,"description":2098,"heroImage":2099,"category":1392,"date":2100,"authors":2101,"slug":2103,"externalUrl":1396},"Vollständige Security-Scanner-Abdeckung der Codebase in Minuten","Security Configuration Profiles ermöglichen schnellere Scanner-Rollouts. Wie GitLab 19.0 Tausende von Projekten in Minuten abdeckt – ohne Lücken.","https://res.cloudinary.com/about-gitlab-com/image/upload/v1779189265/iqzyhhiwagxzwywvjzow.png","2026-05-26",[2102],"Michael Omokoh","security-configuration-profiles",{"title":2105,"description":2106,"heroImage":2099,"category":1392,"date":2100,"authors":2107,"slug":2110,"externalUrl":1396},"Supply-Chain-Risiken reduzieren – mit SBOM-basiertem Dependency Scanning","Transitive Abhängigkeiten erkennen, ihren Ursprung nachverfolgen und nach realer Exposition priorisieren.",[2108,2109],"Mark Settle","Joel Patterson","sbom-based-dependency-scanning",{"title":2112,"description":2113,"heroImage":2099,"category":1392,"date":2114,"authors":2115,"slug":2117,"externalUrl":1396},"CI/CD-Zugangsdaten absichern mit GitLab Secrets Manager","Secrets Manager (Public Beta): Job-Scoping, Least-Privilege-Zugriffsmodell und lückenloser Audit-Trail – nativ in GitLab 19.0.","2026-05-21",[2116,2108],"Joe Randazzo","secrets-manager-in-public-beta",{"promotions":2119},[2120,2134,2145,2156],{"id":2121,"categories":2122,"header":2124,"text":2125,"button":2126,"image":2131},"ai-modernization",[2123],"ai","Hält KI, was uns versprochen wurde?","Das Quiz dauert maximal 5 Minuten.",{"text":2127,"config":2128},"Ermittle deinen KI-Reifegrad",{"href":2129,"dataGaName":2130,"dataGaLocation":1625},"/de-de/assessments/ai-modernization-assessment/","modernization assessment",{"config":2132},{"src":2133},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1772138786/qix0m7kwnd8x2fh1zq49.png",{"id":2135,"categories":2136,"header":2137,"text":2125,"button":2138,"image":2142},"devops-modernization",[1410,1948],"Verwaltest du Tool-Chaos oder stellst du Innovationen bereit?",{"text":2139,"config":2140},"Ermittle deinen DevOps-Reifegrad",{"href":2141,"dataGaName":2130,"dataGaLocation":1625},"/de-de/assessments/devops-modernization-assessment/",{"config":2143},{"src":2144},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1772138785/eg818fmakweyuznttgid.png",{"id":2146,"categories":2147,"header":2148,"text":2125,"button":2149,"image":2153},"security-modernization",[1392],"Tauschst du Schnelligkeit gegen Sicherheit ein?",{"text":2150,"config":2151},"Ermittle deinen Sicherheitsreifegrad",{"href":2152,"dataGaName":2130,"dataGaLocation":1625},"/de-de/assessments/security-modernization-assessment/",{"config":2154},{"src":2155},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1772138786/p4pbqd9nnjejg5ds6mdk.png",{"id":2157,"paths":2158,"header":2161,"text":2162,"button":2163,"image":2168},"github-azure-migration",[2159,2160],"migration-from-azure-devops-to-gitlab","integrating-azure-devops-scm-and-gitlab","Ist dein Team bereit für den Umzug von GitHub nach Azure?","GitHub stellt bereits auf Azure um. Finde heraus, was das für dich bedeutet.",{"text":2164,"config":2165},"Erfahre, wie GitLab im Vergleich zu GitHub abschneidet",{"href":2166,"dataGaName":2167,"dataGaLocation":1625},"/de-de/compare/gitlab-vs-github/github-azure-migration/","github azure migration",{"config":2169},{"src":2144},{"header":2171,"blurb":2172,"button":2173,"secondaryButton":2178},"Beginne noch heute, schneller zu entwickeln","Entdecke, was dein Team mit der intelligenten Orchestrierungsplattform für DevSecOps erreichen kann.\n",{"text":2174,"config":2175},"Kostenlosen Test starten",{"href":2176,"dataGaName":1423,"dataGaLocation":2177},"https://gitlab.com/-/trial_registrations/new?glm_content=default-saas-trial&glm_source=about.gitlab.com/de-de/","feature",{"text":1425,"config":2179},{"href":1427,"dataGaName":1428,"dataGaLocation":2177},1781392668485]