[{"data":1,"prerenderedAt":1004},["ShallowReactive",2],{"/de-de/blog/harden-pipeline-perimeter-for-ai-assisted-coding":3,"navigation-de-de":234,"banner-de-de":654,"footer-de-de":663,"blog-post-authors-de-de-Vishal Thenge":902,"blog-related-posts-de-de-harden-pipeline-perimeter-for-ai-assisted-coding":918,"blog-promotions-de-de":941,"next-steps-de-de":994},{"id":4,"title":5,"authors":6,"body":8,"category":216,"date":217,"description":218,"extension":219,"externalUrl":220,"featured":221,"heroImage":222,"meta":223,"navigation":221,"path":224,"seo":225,"slug":228,"stem":229,"tags":230,"template":232,"updatedDate":220,"__hash__":233},"blogPosts/de-de/blog/harden-pipeline-perimeter-for-ai-assisted-coding.md","Pipeline-Perimeter im Zeitalter KI-gestützter Entwicklung absichern",[7],"Vishal Thenge",{"type":9,"value":10,"toc":208},"minimark",[11,15,18,21,26,29,83,87,90,137,141,144,189,193],[12,13,14],"p",{},"KI-gestützte Entwicklung bewegt sich schneller als die Sicherheitsmodelle, die\nzu ihrer Steuerung entwickelt wurden – Agenten schreiben Code, öffnen Merge\nRequests und liefern Änderungen in einem Tempo, bei dem Schwachstellen unbemerkt\nbleiben. Das Problem ist kein Mangel an Scan-Werkzeugen; es ist, dass Sicherheit\naußerhalb des Workflows lebt, in dem Entscheidungen tatsächlich getroffen werden\n– und Richtlinien damit zu Empfehlungen werden.",[12,16,17],{},"GitLab Ultimate ändert das, indem Application Security zu einer Kerneigenschaft\nder Plattform selbst wird – kein separates Portal, das Entwicklungsteams\ngesondert aufsuchen müssen.",[12,19,20],{},"Dieser Artikel beschreibt die drei sich gegenseitig verstärkenden Dimensionen,\ndie das ermöglichen – Sehen, Durchsetzen und Beheben – und warum alle drei\nzusammen GitLab zu einer echten DevSecOps-Control-Plane für den KI-nativen\nSoftware Development Lifecycle (SDLC) machen.",[22,23,25],"h2",{"id":24},"keine-absicherheit-ohne-sichtbarkeit","Keine Absicherheit ohne Sichtbarkeit",[12,27,28],{},"Governance beginnt damit, jedes Projekt, jeden Scanner und jede Aktion im SDLC\nzu sehen. Projektbezogene Dashboards lassen Lücken unsichtbar – und in diesen\nLücken lebt nicht durchgesetzte Richtlinie.",[30,31,32,49,58,66,74],"ul",{},[33,34,35,36,42,43,48],"li",{},"Das ",[37,38,41],"a",{"href":39,"rel":40},"https://docs.gitlab.com/user/application_security/security_dashboard/",[],"Group Security Dashboard","\nfasst Findings aus Static Application Security Testing (SAST), Software\nComposition Analysis (SCA), Secret Detection, Container Scanning, Infrastructure\nas Code (IaC) Scanning, Dynamic Application Security Testing (DAST) und\nFuzz Testing zusammen. Das Dashboard zeigt Ergebnisse aus allen Repositories\nin einer einzigen Ansicht – ohne Exporte aus mehreren Werkzeugen zusammenzufügen.\nEs liefert Trends über Zeit, Risiken aufgeschlüsselt nach Geschäftsbereich und\nExpositionsgrad sowie das ",[37,44,47],{"href":45,"rel":46},"https://docs.gitlab.com/user/application_security/security_inventory/",[],"Security Inventory","\nin derselben Ansicht. Das Security Inventory zeigt Projekte ohne Bewertung,\nweil sie nie gescannt wurden – die Lücke, die die meisten projektbezogenen\nDashboards nie melden.",[33,50,51,52,57],{},"Die Application Security von GitLab Ultimate macht Identitätsrisiken sichtbar,\ndie andere Scanner häufig vollständig ignorieren. Das ",[37,53,56],{"href":54,"rel":55},"https://docs.gitlab.com/administration/credentials_inventory/",[],"Credentials Inventory","\nlistet jeden Token der Instanz mit Eigentümer, Scopes und Ablaufdatum. Ein\neinzelner Filter zeigt alle aktiven, nicht widerrufenen und kompromittierten\nCredentials. Das ermöglicht die sofortige Sperrung kompromittierter Tokens –\nohne mitten in einem Incident Skripte schreiben zu müssen.",[33,59,60,65],{},[37,61,64],{"href":62,"rel":63},"https://docs.gitlab.com/administration/settings/account_and_limit_settings/#limit-the-lifetime-of-access-tokens",[],"Token Lifetime Enforcement","\nüberführt die Rotationsrichtlinie vom Papier in eine Plattform-Leitplanke:\nkein Token bleibt länger aktiv als das festgelegte Maximum.",[33,67,68,73],{},[37,69,72],{"href":70,"rel":71},"https://docs.gitlab.com/user/compliance/audit_event_streaming/",[],"Audit Event Streaming","\nsendet strukturierte, zeitgestempelte Ereignisse wie Token-Erstellung,\nBerechtigungsänderungen, Merge-Request-Genehmigungen und Rollenänderungen in\nEchtzeit an das SIEM. Jede sicherheitsrelevante Aktion in GitLab ist für das\nSecurity Operations Center sichtbar, sobald sie stattfindet – nicht im\nNachhinein aus Logs rekonstruiert.",[33,75,76,77,82],{},"Mit der ",[37,78,81],{"href":79,"rel":80},"https://docs.gitlab.com/user/application_security/dependency_list/",[],"Group Software Bill of Materials (SBOM)","\nlässt sich die Exposition gegenüber Open-Source-Abhängigkeiten sofort über\ndas gesamte Projektportfolio hinweg suchen.",[22,84,86],{"id":85},"keine-durchsetzung-ohne-automatisierung","Keine Durchsetzung ohne Automatisierung",[12,88,89],{},"Durchsetzung ist der Unterschied zwischen einer Richtlinie, die existiert, und\neiner, die läuft. Dokumentierte Richtlinien verlangen von Entwicklungsteams,\nsie zu kennen, zu konfigurieren und bei jeder Änderung anzuwenden – das ist\nauf menschlicher Geschwindigkeit schwierig und auf Agenten-Geschwindigkeit\nunmöglich. GitLab setzt Richtlinien von innerhalb der Plattform durch – bei\njeder Pipeline und jedem MR, unabhängig davon, ob ein Mensch oder ein Agent die\nÄnderung vornimmt.",[30,91,92,105,113,121,129],{},[33,93,94,99,100,104],{},[37,95,98],{"href":96,"rel":97},"https://docs.gitlab.com/user/application_security/policies/scan_execution_policies/",[],"Scan Execution Policies","\ninjizieren verbindliche SAST-, SCA- und Secret-Detection-Jobs in jede Pipeline,\ndie auf die Produktion zielt. Entwicklungsteams schreiben sie nicht, können\nsie nicht sicher entfernen und nicht mit ",[101,102,103],"code",{},"[skip ci]"," umgehen. Einmal auf\nGroup-Ebene gesetzt, werden die Berechtigungen automatisch auf alle Projekte\nkaskadiert – keine projektbezogene Konfiguration, keine Opt-outs.",[33,106,107,112],{},[37,108,111],{"href":109,"rel":110},"https://docs.gitlab.com/user/application_security/policies/pipeline_execution_policies/",[],"Pipeline Execution Policies","\n(PEPs) gehen weiter und erzwingen ein plattformeigenes CI-Template. Das\nadressiert das Shadow-Pipeline-Problem: Eine selbst gebaute Pipeline außerhalb\nder verwalteten Templates läuft mit demselben Zugriff und demselben Vertrauen\nwie eine sanktionierte. PEPs schließen diese Lücke – Security-Jobs laufen\nunabhängig davon, was die Pipeline eines Projekts enthält.",[33,114,115,120],{},[37,116,119],{"href":117,"rel":118},"https://docs.gitlab.com/user/application_security/detect/roll_out_security_scanning/#merge-request-approval-policy",[],"MR Approval Policies","\nkodieren, was früher in der Dokumentation stand: geschützte Branches,\nMindestanzahl von Genehmigenden und Code-Owner-Anforderungen.",[33,122,35,123,128],{},[37,124,127],{"href":125,"rel":126},"https://docs.gitlab.com/user/compliance/compliance_center/",[],"Compliance Center","\nordnet diese Richtlinien BSI C5, ISO 27001, BSI IT-Grundschutz und PCI DSS\nzu – mit Live-Dashboards und Nachweisketten, die Spreadsheet-Audits in der\nWoche vor einer Prüfung ersetzen.",[33,130,131,136],{},[37,132,135],{"href":133,"rel":134},"https://docs.gitlab.com/user/application_security/secret_detection/secret_push_protection/",[],"Secret Push Protection","\nblockiert Credentials am Pre-Receive-Hook – bevor sie die Git-History\nerreichen. Der Push wird mit Datei, Zeile und Secret-Typ abgelehnt.\nUmgehungsversuche werden protokolliert. Durchsetzung und Transparenz in einer\neinzigen Kontrolle.",[22,138,140],{"id":139},"keine-behebung-ohne-verständnis","Keine Behebung ohne Verständnis",[12,142,143],{},"Transparenz und Durchsetzung bringen Findings vor Entwicklungsteams. Die nächste\nFrage ist, wie effizient diese Findings behoben werden. Backlogs offener\nSchwachstellen gehören zu den größten Herausforderungen und Risiken in der\nEnterprise-Entwicklung – und die Lücke wächst weiter, wenn KI-gestützte\nEntwicklung mehr Code durch die Pipeline treibt. GitLab Ultimate arbeitet von\nbeiden Seiten: Prävention und Remediation. Es blockiert Schwachstellen\nproaktiv, bevor sie den Default-Branch erreichen, und rationalisiert gleichzeitig\ndie Behebung bestehender Security-Schulden. Findings werden innerhalb desselben\nWorkflows geschlossen, in dem sie erkannt wurden – mit Kontext, Priorisierung\nund KI-generierter Remediation, die dieselben Freigaben durchläuft wie jede\nandere Änderung.",[30,145,146,154,162,171,180],{},[33,147,35,148,153],{},[37,149,152],{"href":150,"rel":151},"https://docs.gitlab.com/user/application_security/detect/roll_out_security_scanning/#merge-request-security-widget",[],"MR Security Widget","\nzeigt SAST-, SCA-, Container-, IaC- und Secret-Detection-Findings inline mit\ndem Code-Diff – bevor der Code den Default-Branch erreicht. Entwicklungsteams\nsehen, was in diesem MR neu ist, wo es liegt und wie es behoben werden kann.\nKein separates Portal. Kein Kontextwechsel. Der richtige Moment am richtigen\nOrt.",[33,155,156,161],{},[37,157,160],{"href":158,"rel":159},"https://docs.gitlab.com/user/application_security/sast/gitlab_advanced_sast/",[],"Advanced SAST","\nnutzt dateiübergreifende Taint-Analyse, um nicht vertrauenswürdige Eingaben\nüber mehrere Funktionen und Dateien hinweg zu verfolgen – so wie ein Angreifer\nüber den Code nachdenken würde. Entwicklungsteams sehen den vollständigen\nCode-Fluss von der Quelle bis zur Senke.",[33,163,164,165,170],{},"GitLab Duo Agent Platform ",[37,166,169],{"href":167,"rel":168},"https://docs.gitlab.com/user/application_security/vulnerabilities/false_positive_detection/",[],"bewertet mögliche False Positives","\nund erklärt, warum – damit Teams sich auf reale Risiken konzentrieren, statt\ndas Rauschen eines weiteren Scanners zu triagieren. Statt manueller Analyse\nnutzen Unternehmen kontextbewusstes, KI-gesteuertes Triaging zur Beschleunigung\nder Remediation.",[33,172,173,174,179],{},"Der ",[37,175,178],{"href":176,"rel":177},"https://docs.gitlab.com/user/duo_agent_platform/agents/foundational_agents/security_analyst_agent/",[],"GitLab Duo Security Analyst Agent","\npriorisiert diese Schwachstellen – unter Berücksichtigung von Ausnutzbarkeit,\nExposition und Geschäftskontext, nicht nur Common Vulnerability Scoring\nSystem (CVSS)-Scores.",[33,181,182,183,188],{},"Für SAST-Findings mit hoher Auswirkung öffnet ",[37,184,187],{"href":185,"rel":186},"https://docs.gitlab.com/user/application_security/vulnerabilities/agentic_vulnerability_resolution/",[],"Agentic Vulnerability Resolution","\nautomatisch einen Fix-MR mit Kontext. Das Entwicklungsteam prüft und mergt –\nund schließt den Kreislauf ohne Security-Expertise.",[22,190,192],{"id":191},"jetzt-starten","Jetzt starten",[12,194,195,196,201,202,207],{},"KI-gestützte Entwicklung verlangsamt sich nicht, und die Lücke zwischen\nRichtlinie auf Papier und Richtlinie in der Produktion wächst mit jedem Commit.\nGitLab Ultimate verringert diese Lücke bei jeder Änderung – im Workflow, in dem\nder Code geschrieben wird. ",[37,197,200],{"href":198,"rel":199},"https://about.gitlab.com/de-de/free-trial/",[],"Kostenlose Testversion starten","\noder ",[37,203,206],{"href":204,"rel":205},"https://about.gitlab.com/de-de/sales/",[],"mit einem Solutions Architect sprechen",",\num die Vorteile in der eigenen Pipeline zu sehen.",{"title":209,"searchDepth":210,"depth":210,"links":211},"",2,[212,213,214,215],{"id":24,"depth":210,"text":25},{"id":85,"depth":210,"text":86},{"id":139,"depth":210,"text":140},{"id":191,"depth":210,"text":192},"security","2026-05-13","Wo Menschen, Agenten und Drittanbieter-Code zusammentreffen, braucht es eine Kontrollebene – mit vollständiger Sichtbarkeit, konsequenter Durchsetzung und gezielter Behebung.","md",null,true,"https://res.cloudinary.com/about-gitlab-com/image/upload/v1765809212/noh0mdfn9o94ry9ykura.png",{},"/de-de/blog/harden-pipeline-perimeter-for-ai-assisted-coding",{"config":226,"title":5,"description":218},{"noIndex":227},false,"harden-pipeline-perimeter-for-ai-assisted-coding","de-de/blog/harden-pipeline-perimeter-for-ai-assisted-coding",[216,231],"AI","BlogPost","vKe2EF9Ibg2yjIExEMvC2nHjHOxl8lI4R04p5n9GN88",{"logo":235,"freeTrial":240,"sales":245,"login":250,"items":255,"search":572,"minimal":606,"duo":624,"switchNav":633,"pricingDeployment":644},{"config":236},{"href":237,"dataGaName":238,"dataGaLocation":239},"/de-de/","gitlab logo","header",{"text":241,"config":242},"Kostenlose Testversion anfordern",{"href":243,"dataGaName":244,"dataGaLocation":239},"https://gitlab.com/-/trial_registrations/new?glm_source=about.gitlab.com/de-de&glm_content=default-saas-trial/","free trial",{"text":246,"config":247},"Vertrieb kontaktieren",{"href":248,"dataGaName":249,"dataGaLocation":239},"/de-de/sales/","sales",{"text":251,"config":252},"Anmelden",{"href":253,"dataGaName":254,"dataGaLocation":239},"https://gitlab.com/users/sign_in/","sign in",[256,285,387,392,496,552],{"text":257,"config":258,"menu":260},"Plattform",{"dataNavLevelOne":259},"platform",{"type":261,"columns":262},"cards",[263,269,277],{"title":257,"description":264,"link":265},"Die intelligente Orchestrierungsplattform für DevSecOps",{"text":266,"config":267},"Die Plattform erkunden",{"href":268,"dataGaName":259,"dataGaLocation":239},"/de-de/platform/",{"title":270,"description":271,"link":272},"GitLab Duo Agent Platform","Agentische KI für den gesamten Software-Lebenszyklus",{"text":273,"config":274},"Lerne GitLab Duo kennen",{"href":275,"dataGaName":276,"dataGaLocation":239},"/de-de/gitlab-duo-agent-platform/","gitlab duo agent platform",{"title":278,"description":279,"link":280},"Warum GitLab?","Erfahre, warum sich Unternehmen für GitLab entscheiden",{"text":281,"config":282},"Mehr erfahren",{"href":283,"dataGaName":284,"dataGaLocation":239},"/de-de/why-gitlab/","why gitlab",{"text":286,"left":221,"config":287,"menu":289},"Produkt",{"dataNavLevelOne":288},"solutions",{"type":290,"link":291,"columns":295,"feature":366},"lists",{"text":292,"config":293},"Alle Lösungen anzeigen",{"href":294,"dataGaName":288,"dataGaLocation":239},"/de-de/solutions/",[296,321,344],{"title":297,"description":298,"link":299,"items":304},"Automatisierung","CI/CD und Automatisierung zur Beschleunigung der Bereitstellung",{"config":300},{"icon":301,"href":302,"dataGaName":303,"dataGaLocation":239},"AutomatedCodeAlt","/de-de/solutions/delivery-automation/","automated software delivery",[305,309,312,317],{"text":306,"config":307},"CI/CD",{"href":308,"dataGaLocation":239,"dataGaName":306},"/de-de/solutions/continuous-integration/",{"text":270,"config":310},{"href":275,"dataGaLocation":239,"dataGaName":311},"gitlab duo agent platform - product menu",{"text":313,"config":314},"Quellcodeverwaltung",{"href":315,"dataGaLocation":239,"dataGaName":316},"/de-de/solutions/source-code-management/","Source Code Management",{"text":318,"config":319},"Automatische Softwarebereitstellung",{"href":302,"dataGaLocation":239,"dataGaName":320},"Automated software delivery",{"title":322,"description":323,"link":324,"items":329},"Sicherheit","Entwickle Code schneller ohne Abstriche bei der Sicherheit",{"config":325},{"href":326,"dataGaName":327,"dataGaLocation":239,"icon":328},"/de-de/solutions/application-security-testing/","security and compliance","ShieldCheckLight",[330,334,339],{"text":331,"config":332},"Anwendungssicherheitstests",{"href":326,"dataGaName":333,"dataGaLocation":239},"Application security testing",{"text":335,"config":336},"Sicherheit der Software-Lieferkette",{"href":337,"dataGaLocation":239,"dataGaName":338},"/de-de/solutions/supply-chain/","Software supply chain security",{"text":340,"config":341},"Software-Compliance",{"href":342,"dataGaName":343,"dataGaLocation":239},"/de-de/solutions/software-compliance/","software compliance",{"title":345,"link":346,"items":351},"Messung",{"config":347},{"icon":348,"href":349,"dataGaName":350,"dataGaLocation":239},"DigitalTransformation","/de-de/solutions/visibility-measurement/","visibility and measurement",[352,356,361],{"text":353,"config":354},"Sichtbarkeit und Messung",{"href":349,"dataGaLocation":239,"dataGaName":355},"Visibility and Measurement",{"text":357,"config":358},"Wertstrommanagement",{"href":359,"dataGaLocation":239,"dataGaName":360},"/de-de/solutions/value-stream-management/","Value Stream Management",{"text":362,"config":363},"Analysen und Einblicke",{"href":364,"dataGaLocation":239,"dataGaName":365},"/de-de/solutions/analytics-and-insights/","Analytics and insights",{"title":367,"type":290,"items":368},"GitLab für",[369,375,381],{"text":370,"config":371},"Enterprise",{"icon":372,"href":373,"dataGaLocation":239,"dataGaName":374},"Building","/de-de/enterprise/","enterprise",{"text":376,"config":377},"Kleinunternehmen",{"icon":378,"href":379,"dataGaLocation":239,"dataGaName":380},"Work","/de-de/small-business/","small business",{"text":382,"config":383},"Öffentlicher Sektor",{"icon":384,"href":385,"dataGaLocation":239,"dataGaName":386},"Organization","/de-de/solutions/public-sector/","public sector",{"text":388,"config":389},"Preise",{"href":390,"dataGaName":391,"dataGaLocation":239,"dataNavLevelOne":391},"/de-de/pricing/","pricing",{"text":393,"config":394,"menu":396},"Ressourcen",{"dataNavLevelOne":395},"resources",{"type":290,"link":397,"columns":401,"feature":485},{"text":398,"config":399},"Alle Ressourcen anzeigen",{"href":400,"dataGaName":395,"dataGaLocation":239},"/de-de/resources/",[402,435,457],{"title":403,"items":404},"Erste Schritte",[405,410,415,420,425,430],{"text":406,"config":407},"Installieren",{"href":408,"dataGaName":409,"dataGaLocation":239},"/de-de/install/","install",{"text":411,"config":412},"Kurzanleitungen",{"href":413,"dataGaName":414,"dataGaLocation":239},"/de-de/get-started/","quick setup checklists",{"text":416,"config":417},"Lernen",{"href":418,"dataGaLocation":239,"dataGaName":419},"https://university.gitlab.com/","learn",{"text":421,"config":422},"Produktdokumentation",{"href":423,"dataGaName":424,"dataGaLocation":239},"https://docs.gitlab.com/","product documentation",{"text":426,"config":427},"Best-Practice-Videos",{"href":428,"dataGaName":429,"dataGaLocation":239},"/de-de/getting-started-videos/","best practice videos",{"text":431,"config":432},"Integrationen",{"href":433,"dataGaName":434,"dataGaLocation":239},"/de-de/integrations/","integrations",{"title":436,"items":437},"Entdecken",[438,443,448,452],{"text":439,"config":440},"Kundenerfolge",{"href":441,"dataGaName":442,"dataGaLocation":239},"/de-de/customers/","customer success stories",{"text":444,"config":445},"Blog",{"href":446,"dataGaName":447,"dataGaLocation":239},"/de-de/blog/","blog",{"text":449,"config":450},"The Source",{"href":451,"dataGaName":447,"dataGaLocation":239},"/de-de/the-source/",{"text":453,"config":454},"Remote",{"href":455,"dataGaName":456,"dataGaLocation":239},"https://handbook.gitlab.com/handbook/company/culture/all-remote/","remote",{"title":458,"items":459},"Vernetzen",[460,465,470,475,480],{"text":461,"config":462},"GitLab-Services",{"href":463,"dataGaName":464,"dataGaLocation":239},"/de-de/services/","services",{"text":466,"config":467},"Community",{"href":468,"dataGaName":469,"dataGaLocation":239},"/community/","community",{"text":471,"config":472},"Forum",{"href":473,"dataGaName":474,"dataGaLocation":239},"https://forum.gitlab.com/","forum",{"text":476,"config":477},"Veranstaltungen",{"href":478,"dataGaName":479,"dataGaLocation":239},"/events/","events",{"text":481,"config":482},"Partner",{"href":483,"dataGaName":484,"dataGaLocation":239},"/de-de/partners/","partners",{"config":486,"title":489,"text":490,"link":491},{"background":487,"textColor":488},"url('https://res.cloudinary.com/about-gitlab-com/image/upload/v1777322348/qpq8yrgn8knii57omj0c.png')","#000","Neues bei GitLab","Über die neuesten Funktionen und Verbesserungen auf dem Laufenden bleiben.",{"text":492,"config":493},"Aktuelle Nachrichten",{"href":494,"dataGaName":495,"dataGaLocation":239},"/de-de/whats-new/","whats new",{"text":497,"config":498,"menu":500},"Company",{"dataNavLevelOne":499},"company",{"type":290,"columns":501},[502],{"items":503},[504,509,515,517,522,527,532,537,542,547],{"text":505,"config":506},"Über",{"href":507,"dataGaName":508,"dataGaLocation":239},"/de-de/company/","about",{"text":510,"config":511,"footerGa":514},"Karriere",{"href":512,"dataGaName":513,"dataGaLocation":239},"/jobs/","jobs",{"dataGaName":513},{"text":476,"config":516},{"href":478,"dataGaName":479,"dataGaLocation":239},{"text":518,"config":519},"Geschäftsführung",{"href":520,"dataGaName":521,"dataGaLocation":239},"/company/team/e-group/","leadership",{"text":523,"config":524},"Handbuch",{"href":525,"dataGaName":526,"dataGaLocation":239},"https://handbook.gitlab.com/","handbook",{"text":528,"config":529},"Investor Relations",{"href":530,"dataGaName":531,"dataGaLocation":239},"https://ir.gitlab.com/","investor relations",{"text":533,"config":534},"Trust Center",{"href":535,"dataGaName":536,"dataGaLocation":239},"/de-de/security/","trust center",{"text":538,"config":539},"AI Transparency Center",{"href":540,"dataGaName":541,"dataGaLocation":239},"/de-de/ai-transparency-center/","ai transparency center",{"text":543,"config":544},"Newsletter",{"href":545,"dataGaName":546,"dataGaLocation":239},"/company/contact/#contact-forms","newsletter",{"text":548,"config":549},"Presse",{"href":550,"dataGaName":551,"dataGaLocation":239},"/press/","press",{"text":553,"config":554,"menu":555},"Kontakt",{"dataNavLevelOne":499},{"type":290,"columns":556},[557],{"items":558},[559,562,567],{"text":246,"config":560},{"href":248,"dataGaName":561,"dataGaLocation":239},"talk to sales",{"text":563,"config":564},"Support-Portal",{"href":565,"dataGaName":566,"dataGaLocation":239},"https://support.gitlab.com","support portal",{"text":568,"config":569},"Kundenportal",{"href":570,"dataGaName":571,"dataGaLocation":239},"https://customers.gitlab.com/customers/sign_in/","customer portal",{"close":573,"login":574,"suggestions":581},"Schließen",{"text":575,"link":576},"Um Repositorys und Projekte zu durchsuchen, melde dich an bei",{"text":577,"config":578},"gitlab.com",{"href":253,"dataGaName":579,"dataGaLocation":580},"search login","search",{"text":582,"default":583},"Vorschläge",[584,586,591,593,598,603],{"text":270,"config":585},{"href":275,"dataGaName":270,"dataGaLocation":580},{"text":587,"config":588},"Codevorschläge (KI)",{"href":589,"dataGaName":590,"dataGaLocation":580},"/de-de/solutions/code-suggestions/","Code Suggestions (AI)",{"text":306,"config":592},{"href":308,"dataGaName":306,"dataGaLocation":580},{"text":594,"config":595},"GitLab auf AWS",{"href":596,"dataGaName":597,"dataGaLocation":580},"/de-de/partners/technology-partners/aws/","GitLab on AWS",{"text":599,"config":600},"GitLab auf Google Cloud",{"href":601,"dataGaName":602,"dataGaLocation":580},"/de-de/partners/technology-partners/google-cloud-platform/","GitLab on Google Cloud",{"text":278,"config":604},{"href":283,"dataGaName":605,"dataGaLocation":580},"Why GitLab?",{"freeTrial":607,"mobileIcon":612,"desktopIcon":617,"secondaryButton":620},{"text":608,"config":609},"Kostenlos testen",{"href":610,"dataGaName":244,"dataGaLocation":611},"https://gitlab.com/-/trials/new/","nav",{"altText":613,"config":614},"GitLab-Symbol",{"src":615,"dataGaName":616,"dataGaLocation":611},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1758203874/jypbw1jx72aexsoohd7x.svg","gitlab icon",{"altText":613,"config":618},{"src":619,"dataGaName":616,"dataGaLocation":611},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1758203875/gs4c8p8opsgvflgkswz9.svg",{"text":403,"config":621},{"href":622,"dataGaName":623,"dataGaLocation":611},"https://gitlab.com/-/trial_registrations/new?glm_source=about.gitlab.com/de-de/get-started/","get started",{"freeTrial":625,"mobileIcon":629,"desktopIcon":631},{"text":626,"config":627},"Mehr über GitLab Duo erfahren",{"href":275,"dataGaName":628,"dataGaLocation":611},"gitlab duo",{"altText":613,"config":630},{"src":615,"dataGaName":616,"dataGaLocation":611},{"altText":613,"config":632},{"src":619,"dataGaName":616,"dataGaLocation":611},{"button":634,"mobileIcon":639,"desktopIcon":641},{"text":635,"config":636},"/Option",{"href":637,"dataGaName":638,"dataGaLocation":611},"#contact","switch",{"altText":613,"config":640},{"src":615,"dataGaName":616,"dataGaLocation":611},{"altText":613,"config":642},{"src":643,"dataGaName":616,"dataGaLocation":611},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1773335277/ohhpiuoxoldryzrnhfrh.png",{"freeTrial":645,"mobileIcon":650,"desktopIcon":652},{"text":646,"config":647},"Zurück zur Preisübersicht",{"href":390,"dataGaName":648,"dataGaLocation":611,"icon":649},"back to pricing","GoBack",{"altText":613,"config":651},{"src":615,"dataGaName":616,"dataGaLocation":611},{"altText":613,"config":653},{"src":619,"dataGaName":616,"dataGaLocation":611},{"title":655,"button":656,"config":661},"Sieh dir an, wie agentische KI die Softwarebereitstellung transformiert",{"text":657,"config":658},"Jetzt live bei GitLab Transcend am 10. Juni dabei sein",{"href":659,"dataGaName":660,"dataGaLocation":239},"/de-de/events/transcend/virtual/","transcend event",{"layout":662,"disabled":227},"release",{"data":664},{"text":665,"source":666,"edit":672,"contribute":677,"config":682,"items":687,"minimal":893},"Git ist eine Marke von Software Freedom Conservancy und unsere Verwendung von „GitLab“ erfolgt unter Lizenz.",{"text":667,"config":668},"Quelltext der Seite anzeigen",{"href":669,"dataGaName":670,"dataGaLocation":671},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/","page source","footer",{"text":673,"config":674},"Diese Seite bearbeiten",{"href":675,"dataGaName":676,"dataGaLocation":671},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/-/blob/main/content/","web ide",{"text":678,"config":679},"Beteilige dich",{"href":680,"dataGaName":681,"dataGaLocation":671},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/-/blob/main/CONTRIBUTING.md/","please contribute",{"twitter":683,"facebook":684,"youtube":685,"linkedin":686},"https://x.com/gitlab","https://www.facebook.com/gitlab","https://www.youtube.com/channel/UCnMGQ8QHMAnVIsI3xJrihhg","https://www.linkedin.com/company/gitlab-com",[688,733,786,828,859],{"title":388,"links":689,"subMenu":704},[690,694,699],{"text":691,"config":692},"Tarife anzeigen",{"href":390,"dataGaName":693,"dataGaLocation":671},"view plans",{"text":695,"config":696},"Vorteile von Premium",{"href":697,"dataGaName":698,"dataGaLocation":671},"/de-de/pricing/premium/","why premium",{"text":700,"config":701},"Vorteile von Ultimate",{"href":702,"dataGaName":703,"dataGaLocation":671},"/de-de/pricing/ultimate/","why ultimate",[705],{"title":553,"links":706},[707,709,711,713,718,723,728],{"text":246,"config":708},{"href":248,"dataGaName":249,"dataGaLocation":671},{"text":563,"config":710},{"href":565,"dataGaName":566,"dataGaLocation":671},{"text":568,"config":712},{"href":570,"dataGaName":571,"dataGaLocation":671},{"text":714,"config":715},"Status",{"href":716,"dataGaName":717,"dataGaLocation":671},"https://status.gitlab.com/","status",{"text":719,"config":720},"Nutzungsbedingungen",{"href":721,"dataGaName":722,"dataGaLocation":671},"/terms/","terms of use",{"text":724,"config":725},"Datenschutzerklärung",{"href":726,"dataGaName":727,"dataGaLocation":671},"/de-de/privacy/","privacy statement",{"text":729,"config":730},"Cookie-Einstellungen",{"dataGaName":731,"dataGaLocation":671,"id":732,"isOneTrustButton":221},"cookie preferences","ot-sdk-btn",{"title":286,"links":734,"subMenu":743},[735,739],{"text":736,"config":737},"DevSecOps-Plattform",{"href":268,"dataGaName":738,"dataGaLocation":671},"devsecops platform",{"text":740,"config":741},"KI-unterstützte Entwicklung",{"href":275,"dataGaName":742,"dataGaLocation":671},"ai-assisted development",[744],{"title":745,"links":746},"Themen",[747,751,756,761,766,771,776,781],{"text":306,"config":748},{"href":749,"dataGaName":750,"dataGaLocation":671},"/de-de/topics/ci-cd/","cicd",{"text":752,"config":753},"GitOps",{"href":754,"dataGaName":755,"dataGaLocation":671},"/de-de/topics/gitops/","gitops",{"text":757,"config":758},"DevOps",{"href":759,"dataGaName":760,"dataGaLocation":671},"/de-de/topics/devops/","devops",{"text":762,"config":763},"Versionskontrolle",{"href":764,"dataGaName":765,"dataGaLocation":671},"/de-de/topics/version-control/","version control",{"text":767,"config":768},"DevSecOps",{"href":769,"dataGaName":770,"dataGaLocation":671},"/de-de/topics/devsecops/","devsecops",{"text":772,"config":773},"Cloud-nativ",{"href":774,"dataGaName":775,"dataGaLocation":671},"/de-de/topics/cloud-native/","cloud native",{"text":777,"config":778},"KI für das Programmieren",{"href":779,"dataGaName":780,"dataGaLocation":671},"/de-de/topics/devops/ai-for-coding/","ai for coding",{"text":782,"config":783},"Agentische KI",{"href":784,"dataGaName":785,"dataGaLocation":671},"/de-de/topics/agentic-ai/","agentic ai",{"title":787,"links":788},"Lösungen",[789,792,794,799,803,806,809,812,814,816,818,823],{"text":331,"config":790},{"href":326,"dataGaName":791,"dataGaLocation":671},"Application Security Testing",{"text":318,"config":793},{"href":302,"dataGaName":303,"dataGaLocation":671},{"text":795,"config":796},"Agile Entwicklung",{"href":797,"dataGaName":798,"dataGaLocation":671},"/de-de/solutions/agile-delivery/","agile delivery",{"text":800,"config":801},"SCM",{"href":315,"dataGaName":802,"dataGaLocation":671},"source code management",{"text":306,"config":804},{"href":308,"dataGaName":805,"dataGaLocation":671},"continuous integration & delivery",{"text":357,"config":807},{"href":359,"dataGaName":808,"dataGaLocation":671},"value stream management",{"text":752,"config":810},{"href":811,"dataGaName":755,"dataGaLocation":671},"/de-de/solutions/gitops/",{"text":370,"config":813},{"href":373,"dataGaName":374,"dataGaLocation":671},{"text":376,"config":815},{"href":379,"dataGaName":380,"dataGaLocation":671},{"text":382,"config":817},{"href":385,"dataGaName":386,"dataGaLocation":671},{"text":819,"config":820},"Bildungswesen",{"href":821,"dataGaName":822,"dataGaLocation":671},"/de-de/solutions/education/","education",{"text":824,"config":825},"Finanzdienstleistungen",{"href":826,"dataGaName":827,"dataGaLocation":671},"/de-de/solutions/finance/","financial services",{"title":393,"links":829},[830,832,834,836,839,841,844,846,848,851,853,855,857],{"text":406,"config":831},{"href":408,"dataGaName":409,"dataGaLocation":671},{"text":411,"config":833},{"href":413,"dataGaName":414,"dataGaLocation":671},{"text":416,"config":835},{"href":418,"dataGaName":419,"dataGaLocation":671},{"text":421,"config":837},{"href":423,"dataGaName":838,"dataGaLocation":671},"docs",{"text":444,"config":840},{"href":446,"dataGaName":447,"dataGaLocation":671},{"text":842,"config":843},"Neuigkeiten",{"href":494,"dataGaName":495,"dataGaLocation":671},{"text":439,"config":845},{"href":441,"dataGaName":442,"dataGaLocation":671},{"text":453,"config":847},{"href":455,"dataGaName":456,"dataGaLocation":671},{"text":849,"config":850},"GitLab Services",{"href":463,"dataGaName":464,"dataGaLocation":671},{"text":466,"config":852},{"href":468,"dataGaName":469,"dataGaLocation":671},{"text":471,"config":854},{"href":473,"dataGaName":474,"dataGaLocation":671},{"text":476,"config":856},{"href":478,"dataGaName":479,"dataGaLocation":671},{"text":481,"config":858},{"href":483,"dataGaName":484,"dataGaLocation":671},{"title":860,"links":861},"Unternehmen",[862,864,866,868,870,872,877,882,884,886,888],{"text":505,"config":863},{"href":507,"dataGaName":499,"dataGaLocation":671},{"text":510,"config":865},{"href":512,"dataGaName":513,"dataGaLocation":671},{"text":518,"config":867},{"href":520,"dataGaName":521,"dataGaLocation":671},{"text":523,"config":869},{"href":525,"dataGaName":526,"dataGaLocation":671},{"text":528,"config":871},{"href":530,"dataGaName":531,"dataGaLocation":671},{"text":873,"config":874},"Nachhaltigkeit",{"href":875,"dataGaName":876,"dataGaLocation":671},"/sustainability/","Sustainability",{"text":878,"config":879},"Vielfalt, Inklusion und Zugehörigkeit",{"href":880,"dataGaName":881,"dataGaLocation":671},"/de-de/diversity-inclusion-belonging/","Diversity, inclusion and belonging",{"text":533,"config":883},{"href":535,"dataGaName":536,"dataGaLocation":671},{"text":543,"config":885},{"href":545,"dataGaName":546,"dataGaLocation":671},{"text":548,"config":887},{"href":550,"dataGaName":551,"dataGaLocation":671},{"text":889,"config":890},"Transparenzerklärung zu moderner Sklaverei",{"href":891,"dataGaName":892,"dataGaLocation":671},"https://handbook.gitlab.com/handbook/legal/modern-slavery-act-transparency-statement/","modern slavery transparency statement",{"items":894},[895,897,900],{"text":719,"config":896},{"href":721,"dataGaName":722,"dataGaLocation":671},{"text":898,"config":899},"Cookies",{"dataGaName":731,"dataGaLocation":671,"id":732,"isOneTrustButton":221},{"text":724,"config":901},{"href":726,"dataGaName":727,"dataGaLocation":671},[903],{"id":904,"title":7,"body":220,"config":905,"content":907,"description":220,"extension":912,"meta":913,"navigation":221,"path":914,"seo":915,"stem":916,"__hash__":917},"blogAuthors/en-us/blog/authors/vishal-thenge.yml",{"template":906},"BlogAuthor",{"name":7,"config":908},{"socialProof":909,"headshot":911},{"gitlabHandle":910},"vthenge","https://res.cloudinary.com/about-gitlab-com/image/upload/v1778679633/rap90jlu5xvctxfw0jtw.png","yml",{},"/en-us/blog/authors/vishal-thenge",{},"en-us/blog/authors/vishal-thenge","2XG8haUsBClI0_stvszGR1ovFtzf7AHo2doY4AyUXs8",[919,927,934],{"title":920,"description":921,"heroImage":922,"category":216,"date":923,"authors":924,"slug":926,"externalUrl":220},"Vollständige Security-Scanner-Abdeckung der Codebase in Minuten","Security Configuration Profiles ermöglichen schnellere Scanner-Rollouts. Wie GitLab 19.0 Tausende von Projekten in Minuten abdeckt – ohne Lücken.","https://res.cloudinary.com/about-gitlab-com/image/upload/v1779189265/iqzyhhiwagxzwywvjzow.png","2026-05-26",[925],"Michael Omokoh","security-configuration-profiles",{"title":928,"description":929,"heroImage":922,"category":216,"date":923,"authors":930,"slug":933,"externalUrl":220},"Supply-Chain-Risiken reduzieren – mit SBOM-basiertem Dependency Scanning","Transitive Abhängigkeiten erkennen, ihren Ursprung nachverfolgen und nach realer Exposition priorisieren.",[931,932],"Mark Settle","Joel Patterson","sbom-based-dependency-scanning",{"title":935,"description":936,"heroImage":922,"category":216,"date":937,"authors":938,"slug":940,"externalUrl":220},"CI/CD-Zugangsdaten absichern mit GitLab Secrets Manager","Secrets Manager (Public Beta): Job-Scoping, Least-Privilege-Zugriffsmodell und lückenloser Audit-Trail – nativ in GitLab 19.0.","2026-05-21",[939,931],"Joe Randazzo","secrets-manager-in-public-beta",{"promotions":942},[943,957,969,980],{"id":944,"categories":945,"header":947,"text":948,"button":949,"image":954},"ai-modernization",[946],"ai","Hält KI, was uns versprochen wurde?","Das Quiz dauert maximal 5 Minuten.",{"text":950,"config":951},"Ermittle deinen KI-Reifegrad",{"href":952,"dataGaName":953,"dataGaLocation":447},"/de-de/assessments/ai-modernization-assessment/","modernization assessment",{"config":955},{"src":956},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1772138786/qix0m7kwnd8x2fh1zq49.png",{"id":958,"categories":959,"header":961,"text":948,"button":962,"image":966},"devops-modernization",[960,770],"product","Verwaltest du Tool-Chaos oder stellst du Innovationen bereit?",{"text":963,"config":964},"Ermittle deinen DevOps-Reifegrad",{"href":965,"dataGaName":953,"dataGaLocation":447},"/de-de/assessments/devops-modernization-assessment/",{"config":967},{"src":968},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1772138785/eg818fmakweyuznttgid.png",{"id":970,"categories":971,"header":972,"text":948,"button":973,"image":977},"security-modernization",[216],"Tauschst du Schnelligkeit gegen Sicherheit ein?",{"text":974,"config":975},"Ermittle deinen Sicherheitsreifegrad",{"href":976,"dataGaName":953,"dataGaLocation":447},"/de-de/assessments/security-modernization-assessment/",{"config":978},{"src":979},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1772138786/p4pbqd9nnjejg5ds6mdk.png",{"id":981,"paths":982,"header":985,"text":986,"button":987,"image":992},"github-azure-migration",[983,984],"migration-from-azure-devops-to-gitlab","integrating-azure-devops-scm-and-gitlab","Ist dein Team bereit für den Umzug von GitHub nach Azure?","GitHub stellt bereits auf Azure um. Finde heraus, was das für dich bedeutet.",{"text":988,"config":989},"Erfahre, wie GitLab im Vergleich zu GitHub abschneidet",{"href":990,"dataGaName":991,"dataGaLocation":447},"/de-de/compare/gitlab-vs-github/github-azure-migration/","github azure migration",{"config":993},{"src":968},{"header":995,"blurb":996,"button":997,"secondaryButton":1002},"Beginne noch heute, schneller zu entwickeln","Entdecke, was dein Team mit der intelligenten Orchestrierungsplattform für DevSecOps erreichen kann.\n",{"text":998,"config":999},"Kostenlosen Test starten",{"href":1000,"dataGaName":244,"dataGaLocation":1001},"https://gitlab.com/-/trial_registrations/new?glm_content=default-saas-trial&glm_source=about.gitlab.com/de-de/","feature",{"text":246,"config":1003},{"href":248,"dataGaName":249,"dataGaLocation":1001},1781392753051]