[{"data":1,"prerenderedAt":1092},["ShallowReactive",2],{"/fr-fr/blog/sbom-based-dependency-scanning":3,"navigation-fr-fr":309,"banner-fr-fr":732,"footer-fr-fr":741,"blog-post-authors-fr-fr-Mark Settle|Joel Patterson":982,"blog-related-posts-fr-fr-sbom-based-dependency-scanning":1008,"blog-promotions-fr-fr":1031,"next-steps-fr-fr":1083},{"id":4,"title":5,"authors":6,"body":9,"category":290,"date":291,"description":292,"extension":293,"externalUrl":294,"featured":295,"heroImage":296,"meta":297,"navigation":298,"path":299,"seo":300,"slug":302,"stem":303,"tags":304,"template":307,"updatedDate":294,"__hash__":308},"blogPosts/fr-fr/blog/sbom-based-dependency-scanning.md","Réduisez les risques liés à la chaîne d'approvisionnement grâce à l'analyse des dépendances basée sur les SBOM",[7,8],"Mark Settle","Joel Patterson",{"type":10,"value":11,"toc":279},"minimark",[12,29,32,41,46,62,65,73,82,86,89,109,115,121,125,139,143,152,163,167,170,179,198,202,205,214,228,236,240],[13,14,15,16,22,23,28],"p",{},"Le code tiers domine la plupart des codes sources, et ",[17,18,21],"a",{"href":19,"rel":20},"https://about.gitlab.com/fr-fr/blog/pipeline-security-lessons-from-march-supply-chain-incidents/",[],"quatre incidents récents liés à la chaîne d'approvisionnement"," montrent comment un seul paquet compromis peut se propager à tous les projets qui en dépendent. L'IA amplifie ce problème : des études montrent que près de la moitié du ",[17,24,27],{"href":25,"rel":26},"https://cset.georgetown.edu/publication/cybersecurity-risks-of-ai-generated-code/",[],"code généré par l'IA contient des vulnérabilités",".",[13,30,31],{},"Les scanners de dépendances traditionnels, y compris l'analyseur Gemnasium de GitLab, ont été conçus pour répondre à une seule question : lesquels de mes paquets déclarés présentent des CVE connus ? Lorsque les arbres de dépendances n'étaient pas aussi profonds et que les cycles de publication n'étaient pas aussi rapides, cette approche fonctionnait.",[13,33,34,35,40],{},"Aujourd'hui, les équipes de sécurité applicative doivent répondre à des questions plus complexes : comment un paquet vulnérable s'est-il retrouvé dans le projet ? Qu'est-ce qui l'accompagnait ? Et quelles dépendances votre code utilise-t-il réellement ? Avec GitLab 19.0, ",[17,36,39],{"href":37,"rel":38},"https://docs.gitlab.com/user/application_security/dependency_scanning/dependency_scanning_sbom/",[],"l'analyse des dépendances basée sur une nomenclature logicielle (SBOM)"," est désormais en disponibilité générale pour aider à répondre à ces questions. Cette fonctionnalité recense chaque dépendance directe et transitive de votre projet et vous indique quels paquets vulnérables votre application utilise réellement.",[42,43,45],"h2",{"id":44},"comment-gitlab-détecte-les-dépendances-vulnérables","Comment GitLab détecte les dépendances vulnérables",[13,47,48,49,55,56,61],{},"L'analyse des dépendances basée sur les ",[17,50,54],{"href":51,"rel":52,"title":53},"https://about.gitlab.com/fr-fr/blog/the-ultimate-guide-to-sboms/",[],"Qu'est-ce qu'une nomenclature logicielle ?","SBOM"," est un outil d'analyse léger qui détecte les vulnérabilités dans les bibliothèques et paquets tiers de votre projet. Il répertorie les dépendances dans une SBOM et compare ces composants à la ",[17,57,60],{"href":58,"rel":59},"https://advisories.gitlab.com/",[],"base de données des avis de sécurité de GitLab"," pour signaler les problèmes connus.",[13,63,64],{},"GitLab affiche les résultats directement dans l'environnement de travail des équipes. Les vulnérabilités introduites par une modification apparaissent dans la merge request, afin que les équipes de développement puissent les corriger avant la mise en production. Les résultats sont également affichés dans les tableaux de bord et les rapports de vulnérabilités, ce qui permet aux équipes de sécurité de consulter les résultats de tous les projets en un seul endroit.",[13,66,67],{},[68,69],"img",{"alt":70,"src":71,"title":72},"Rapport d'analyse des dépendances affichant la nomenclature logicielle","https://res.cloudinary.com/about-gitlab-com/image/upload/v1779470339/hqqacbegzzompikjkcij.png","Rapport d'analyse des dépendances affichant le software bill of materials",[13,74,75,76,81],{},"L'analyseur génère à la fois une SBOM au format ",[17,77,80],{"href":78,"rel":79},"https://cyclonedx.org/",[],"CycloneDX"," et un rapport d'analyse des dépendances. Des résultats lisibles par machine que vous pouvez utiliser dans GitLab, pour les rapports de conformité ou dans des outils plus larges de gestion de la chaîne d'approvisionnement.",[42,83,85],{"id":84},"les-possibilités-offertes-par-lanalyse-des-dépendances-basée-sur-les-sbom","Les possibilités offertes par l'analyse des dépendances basée sur les SBOM",[13,87,88],{},"L'analyse des dépendances basée sur les SBOM introduit des fonctionnalités qui vont au-delà de notre analyseur basé sur Gemnasium :",[13,90,91,95,96,100,101,104,105,108],{},[92,93,94],"strong",{},"Retracez les dépendances transitives jusqu'à leur source."," L'analyseur retrace les dépendances transitives, quelle que soit leur niveau d'imbrication. Lorsque l'analyseur signale un paquet vulnérable, il vous montre la chaîne qui l'a introduit dans votre projet. Si la ",[97,98,99],"code",{},"bibliothèque-a"," dépend de la ",[97,102,103],{},"bibliothèque-b",", qui dépend elle-même de la ",[97,106,107],{},"bibliothèque-c"," vulnérable, vous pouvez retracer ce chemin et savoir où intervenir.",[13,110,111,114],{},[92,112,113],{},"Concentrez-vous sur les vulnérabilités que votre code utilise réellement."," Toutes les dépendances incluses dans les fichiers manifestes et de build ne s'exécutent pas dans votre application. Pour les projets Java, JavaScript/TypeScript et Python, l'analyseur vérifie si votre code importe ou requiert directement des paquets vulnérables, en distinguant les dépendances accessibles de celles qui sont incluses de manière transitive mais jamais référencées par votre application. GitLab affiche le statut d'accessibilité pour chaque résultat, afin que les équipes puissent déprioritiser les vulnérabilités dans les paquets que leur code n'importe jamais et concentrer leurs efforts de correction là où l'exposition est plausible.",[13,116,117,120],{},[92,118,119],{},"Recherchez en permanence de nouvelles vulnérabilités."," Lancez l'analyseur lorsque de nouveaux avis de sécurité sont publiés, et pour chaque merge request et exécution de pipeline. C'est particulièrement important pour les projets dont le développement actif a ralenti mais dont le code est toujours en production.",[42,122,124],{"id":123},"lanalyse-des-dépendances-basée-sur-les-sbom-en-action","L'analyse des dépendances basée sur les SBOM en action",[126,127,130,131],"figure",{"className":128},[129],"video_container","\n  ",[132,133,138],"iframe",{"src":134,"frameBorder":135,"allowFullScreen":136,"title":137},"https://www.youtube.com/embed/r_QjbNUqJT0?si=378NdrSve1GoFklm","0","true","\nDependency Scanning with SBOM GA - GitLab 19"," ",[42,140,142],{"id":141},"langages-et-formats-de-fichiers-pris-en-charge","Langages et formats de fichiers pris en charge",[13,144,145,146,151],{},"Cette version ",[17,147,150],{"href":148,"rel":149},"https://docs.gitlab.com/user/application_security/dependency_scanning/dependency_scanning_sbom/#supported-languages-and-files",[],"prend en charge plus de 24 écosystèmes de paquets",", et d'autres sont prévus dans les prochaines versions. L'ajout de la prise en charge de nouveaux langages et formats de fichiers est désormais plus simple, car l'analyseur analyse directement les fichiers de verrouillage et les graphes de dépendances, plutôt que de reproduire la chaîne d'outils de build de chaque gestionnaire de paquets.",[13,153,154,155,158,159,162],{},"Lorsqu'un fichier de verrouillage ou un graphe de dépendances pris en charge n'est pas disponible, l'analyseur se replie sur l'analyse des fichiers manifestes tels que ",[97,156,157],{},"pom.xml",", ",[97,160,161],{},"requirements.txt"," et les fichiers de build Gradle. Cela expose les dépendances directes mais pas les dépendances transitives, de sorte que la couverture est moins complète qu'une analyse basée sur un fichier de verrouillage. Les fichiers de verrouillage restent l'approche recommandée, mais l'analyse des manifestes offre aux équipes un point de départ pour les projets qui n'en disposent pas.",[42,164,166],{"id":165},"configurez-lanalyse-des-dépendances-une-fois-appliquez-la-partout","Configurez l'analyse des dépendances une fois, appliquez-la partout",[13,168,169],{},"À mesure que le nombre de projets augmente, la configuration manuelle des analyseurs dans chaque projet devient une charge opérationnelle significative. Des projets sont ignorés, les configurations dérivent et les audits révèlent des lacunes dont personne ne soupçonnait l'existence.",[13,171,172,173,178],{},"GitLab 19.0 intègre un ",[17,174,177],{"href":175,"rel":176},"https://docs.gitlab.com/user/application_security/configuration/security_configuration_profiles/",[],"profil de configuration de sécurité"," dédié à l'analyse des dépendances. Les équipes de sécurité et de plateforme configurent l'analyse une seule fois et l'appliquent à des centaines de projets, au lieu de modifier chaque pipeline manuellement.",[13,180,181,182,187,188,193,194,197],{},"Vous pouvez imposer ces normes de sécurité à l'aide de ",[17,183,186],{"href":184,"rel":185},"https://docs.gitlab.com/user/application_security/policies/scan_execution_policies/",[],"politiques d'exécution de scan"," et de ",[17,189,192],{"href":190,"rel":191},"https://docs.gitlab.com/user/application_security/policies/pipeline_execution_policies/",[],"politiques d'exécution de pipeline",". Elles permettent aux équipes d'appliquer l'analyse des dépendances à plusieurs projets sans toucher à un seul fichier ",[97,195,196],{},".gitlab-ci.yml",". En définissant l'exigence une seule fois au niveau du groupe ou de l'instance, la politique s'applique automatiquement partout.",[42,199,201],{"id":200},"commencez-dès-aujourdhui","Commencez dès aujourd'hui",[13,203,204],{},"L'analyse des dépendances basée sur les SBOM est disponible pour les clients GitLab Ultimate. La fonctionnalité est active sur GitLab.com et déployée progressivement pour les clients GitLab Dedicated et GitLab Self-Managed selon notre cadence de publication standard.",[13,206,207,208,213],{},"Les équipes qui migrent depuis le scanner de dépendances Gemnasium peuvent exécuter les deux analyseurs en parallèle pendant la transition. Le ",[17,209,212],{"href":210,"rel":211},"https://docs.gitlab.com/user/application_security/dependency_scanning/migration_guide_to_sbom_based_scans/",[],"guide de migration"," vous guide tout au long du processus, notamment pour comparer les résultats entre les deux.",[13,215,216,217,222,223,227],{},"Pour démarrer de zéro, suivez les instructions étape par étape de notre ",[17,218,221],{"href":219,"rel":220},"https://docs.gitlab.com/tutorials/dependency_scanning_by_sbom/",[],"tutoriel de configuration",". Notre ",[17,224,226],{"href":37,"rel":225},[],"documentation technique"," couvre la configuration, les langages pris en charge et les options avancées.",[13,229,230,231,28],{},"N'hésitez pas à nous faire part de vos demandes et suggestions concernant l'analyse des dépendances dans notre ",[17,232,235],{"href":233,"rel":234},"https://gitlab.com/gitlab-org/gitlab/-/work_items/523458",[],"epic dédié à cet effet",[42,237,239],{"id":238},"en-savoir-plus-sur-les-nouveautés-de-gitlab-190","En savoir plus sur les nouveautés de GitLab 19.0",[241,242,243,251,258,265,272],"ul",{},[244,245,246],"li",{},[17,247,250],{"href":248,"rel":249},"https://about.gitlab.com/fr-fr/blog/secrets-manager-in-public-beta/",[],"Gérez vos identifiants CI/CD avec GitLab Secrets Manager",[244,252,253],{},[17,254,257],{"href":255,"rel":256},"https://about.gitlab.com/fr-fr/blog/transform-mrs-to-automated-workflow/",[],"Transformez les merge requests de tâches manuelles en workflow automatisé",[244,259,260],{},[17,261,264],{"href":262,"rel":263},"https://about.gitlab.com/fr-fr/blog/track-ci-component-usage/",[],"Suivez l'utilisation des composants CI dans votre organisation",[244,266,267],{},[17,268,271],{"href":269,"rel":270},"https://about.gitlab.com/fr-fr/blog/more-ai-models-for-duo-agent-platform-self-hosted/",[],"Plus de modèles d'IA pour GitLab Duo Agent Platform Self-Hosted",[244,273,274],{},[17,275,278],{"href":276,"rel":277},"https://about.gitlab.com/blog/security-configuration-profiles/",[],"Couverture complète de votre code source par les scanners de sécurité en quelques minutes",{"title":280,"searchDepth":281,"depth":281,"links":282},"",2,[283,284,285,286,287,288,289],{"id":44,"depth":281,"text":45},{"id":84,"depth":281,"text":85},{"id":123,"depth":281,"text":124},{"id":141,"depth":281,"text":142},{"id":165,"depth":281,"text":166},{"id":200,"depth":281,"text":201},{"id":238,"depth":281,"text":239},"security","2026-05-26","Détectez les dépendances transitives, retracez leur parcours jusqu'à votre projet et hiérarchisez-les selon leur exposition réelle.","md",null,false,"https://res.cloudinary.com/about-gitlab-com/image/upload/v1779189265/iqzyhhiwagxzwywvjzow.png",{},true,"/fr-fr/blog/sbom-based-dependency-scanning",{"config":301,"title":5,"description":292},{"noIndex":295},"sbom-based-dependency-scanning","fr-fr/blog/sbom-based-dependency-scanning",[290,305,306],"features","product","BlogPost","LUlL52EpxhUIpbCAdSZv3Ljlp-j6PLzil31PzFNNRi4",{"logo":310,"freeTrial":315,"sales":320,"login":325,"items":330,"search":647,"minimal":683,"duo":702,"switchNav":711,"pricingDeployment":722},{"config":311},{"href":312,"dataGaName":313,"dataGaLocation":314},"/fr-fr/","gitlab logo","header",{"text":316,"config":317},"Commencer un essai gratuit",{"href":318,"dataGaName":319,"dataGaLocation":314},"https://gitlab.com/-/trial_registrations/new?glm_source=about.gitlab.com/fr-fr&glm_content=default-saas-trial/","free trial",{"text":321,"config":322},"Contacter l’équipe commerciale",{"href":323,"dataGaName":324,"dataGaLocation":314},"/fr-fr/sales/","sales",{"text":326,"config":327},"Connexion",{"href":328,"dataGaName":329,"dataGaLocation":314},"https://gitlab.com/users/sign_in/","sign in",[331,360,462,467,571,627],{"text":332,"config":333,"menu":335},"Plateforme",{"dataNavLevelOne":334},"platform",{"type":336,"columns":337},"cards",[338,344,352],{"title":332,"description":339,"link":340},"La plateforme d’orchestration intelligente pour le DevSecOps",{"text":341,"config":342},"Explorer notre plateforme",{"href":343,"dataGaName":334,"dataGaLocation":314},"/fr-fr/platform/",{"title":345,"description":346,"link":347},"GitLab Duo Agent Platform","L’IA agentique pour l’ensemble du cycle de développement logiciel",{"text":348,"config":349},"Découvrir GitLab Duo",{"href":350,"dataGaName":351,"dataGaLocation":314},"/fr-fr/gitlab-duo-agent-platform/","gitlab duo agent platform",{"title":353,"description":354,"link":355},"Pourquoi GitLab ?","Découvrez les principales raisons pour lesquelles les entreprises choisissent GitLab",{"text":356,"config":357},"En savoir plus",{"href":358,"dataGaName":359,"dataGaLocation":314},"/fr-fr/why-gitlab/","why gitlab",{"text":361,"left":298,"config":362,"menu":364},"Produit",{"dataNavLevelOne":363},"solutions",{"type":365,"link":366,"columns":370,"feature":441},"lists",{"text":367,"config":368},"Voir toutes les solutions",{"href":369,"dataGaName":363,"dataGaLocation":314},"/fr-fr/solutions/",[371,396,419],{"title":372,"description":373,"link":374,"items":379},"Automatisation","CI/CD et automatisation pour accélérer le déploiement",{"config":375},{"icon":376,"href":377,"dataGaName":378,"dataGaLocation":314},"AutomatedCodeAlt","/fr-fr/solutions/delivery-automation/","automated software delivery",[380,384,387,392],{"text":381,"config":382},"CI/CD",{"href":383,"dataGaLocation":314,"dataGaName":381},"/fr-fr/solutions/continuous-integration/",{"text":345,"config":385},{"href":350,"dataGaLocation":314,"dataGaName":386},"gitlab duo agent platform - product menu",{"text":388,"config":389},"Gestion du code source",{"href":390,"dataGaLocation":314,"dataGaName":391},"/fr-fr/solutions/source-code-management/","Source Code Management",{"text":393,"config":394},"Livraison de logiciels automatisée",{"href":377,"dataGaLocation":314,"dataGaName":395},"Automated software delivery",{"title":397,"description":398,"link":399,"items":404},"Sécurité","Livrez du code plus rapidement sans compromettre la sécurité",{"config":400},{"href":401,"dataGaName":402,"dataGaLocation":314,"icon":403},"/fr-fr/solutions/application-security-testing/","security and compliance","ShieldCheckLight",[405,409,414],{"text":406,"config":407},"Tests de sécurité des applications",{"href":401,"dataGaName":408,"dataGaLocation":314},"Application security testing",{"text":410,"config":411},"Sécurité de la chaîne d’approvisionnement logicielle",{"href":412,"dataGaLocation":314,"dataGaName":413},"/fr-fr/solutions/supply-chain/","Software supply chain security",{"text":415,"config":416},"Conformité logicielle",{"href":417,"dataGaName":418,"dataGaLocation":314},"/fr-fr/solutions/software-compliance/","software compliance",{"title":420,"link":421,"items":426},"Mesures",{"config":422},{"icon":423,"href":424,"dataGaName":425,"dataGaLocation":314},"DigitalTransformation","/fr-fr/solutions/visibility-measurement/","visibility and measurement",[427,431,436],{"text":428,"config":429},"Visibilité et mesures",{"href":424,"dataGaLocation":314,"dataGaName":430},"Visibility and Measurement",{"text":432,"config":433},"Gestion de la chaîne de valeur",{"href":434,"dataGaLocation":314,"dataGaName":435},"/fr-fr/solutions/value-stream-management/","Value Stream Management",{"text":437,"config":438},"Analyses et informations",{"href":439,"dataGaLocation":314,"dataGaName":440},"/fr-fr/solutions/analytics-and-insights/","Analytics and insights",{"title":442,"type":365,"items":443},"GitLab",[444,450,456],{"text":445,"config":446},"Pour les entreprises",{"icon":447,"href":448,"dataGaLocation":314,"dataGaName":449},"Building","/fr-fr/enterprise/","enterprise",{"text":451,"config":452},"Pour les PME",{"icon":453,"href":454,"dataGaLocation":314,"dataGaName":455},"Work","/fr-fr/small-business/","small business",{"text":457,"config":458},"Pour le secteur public",{"icon":459,"href":460,"dataGaLocation":314,"dataGaName":461},"Organization","/fr-fr/solutions/public-sector/","public sector",{"text":463,"config":464},"Tarifs",{"href":465,"dataGaName":466,"dataGaLocation":314,"dataNavLevelOne":466},"/fr-fr/pricing/","pricing",{"text":468,"config":469,"menu":471},"Ressources",{"dataNavLevelOne":470},"resources",{"type":365,"link":472,"columns":476,"feature":560},{"text":473,"config":474},"Afficher toutes les ressources",{"href":475,"dataGaName":470,"dataGaLocation":314},"/fr-fr/resources/",[477,510,532],{"title":478,"items":479},"Premiers pas",[480,485,490,495,500,505],{"text":481,"config":482},"Installation",{"href":483,"dataGaName":484,"dataGaLocation":314},"/fr-fr/install/","install",{"text":486,"config":487},"Guides de démarrage",{"href":488,"dataGaName":489,"dataGaLocation":314},"/fr-fr/get-started/","quick setup checklists",{"text":491,"config":492},"Apprentissage",{"href":493,"dataGaLocation":314,"dataGaName":494},"https://university.gitlab.com/","learn",{"text":496,"config":497},"Documentation",{"href":498,"dataGaName":499,"dataGaLocation":314},"https://docs.gitlab.com/","product documentation",{"text":501,"config":502},"Vidéos sur les bonnes pratiques",{"href":503,"dataGaName":504,"dataGaLocation":314},"/fr-fr/getting-started-videos/","best practice videos",{"text":506,"config":507},"Intégrations",{"href":508,"dataGaName":509,"dataGaLocation":314},"/fr-fr/integrations/","integrations",{"title":511,"items":512},"Découvrir",[513,518,523,527],{"text":514,"config":515},"Témoignages clients",{"href":516,"dataGaName":517,"dataGaLocation":314},"/fr-fr/customers/","customer success stories",{"text":519,"config":520},"Blog",{"href":521,"dataGaName":522,"dataGaLocation":314},"/fr-fr/blog/","blog",{"text":524,"config":525},"The Source",{"href":526,"dataGaName":522,"dataGaLocation":314},"/fr-fr/the-source/",{"text":528,"config":529},"Travail à distance",{"href":530,"dataGaName":531,"dataGaLocation":314},"https://handbook.gitlab.com/handbook/company/culture/all-remote/","remote",{"title":533,"items":534},"Connecter",[535,540,545,550,555],{"text":536,"config":537},"Services GitLab",{"href":538,"dataGaName":539,"dataGaLocation":314},"/fr-fr/services/","services",{"text":541,"config":542},"Communauté",{"href":543,"dataGaName":544,"dataGaLocation":314},"/community/","community",{"text":546,"config":547},"Forum",{"href":548,"dataGaName":549,"dataGaLocation":314},"https://forum.gitlab.com/","forum",{"text":551,"config":552},"Événements",{"href":553,"dataGaName":554,"dataGaLocation":314},"/events/","events",{"text":556,"config":557},"Partenaires",{"href":558,"dataGaName":559,"dataGaLocation":314},"/fr-fr/partners/","partners",{"config":561,"title":564,"text":565,"link":566},{"background":562,"textColor":563},"url('https://res.cloudinary.com/about-gitlab-com/image/upload/v1777322348/qpq8yrgn8knii57omj0c.png')","#000","Nouveautés de GitLab","Restez informé des dernières fonctionnalités et améliorations.",{"text":567,"config":568},"Lire les articles les plus récents",{"href":569,"dataGaName":570,"dataGaLocation":314},"/fr-fr/whats-new/","whats new",{"text":572,"config":573,"menu":575},"Société",{"dataNavLevelOne":574},"company",{"type":365,"columns":576},[577],{"items":578},[579,584,590,592,597,602,607,612,617,622],{"text":580,"config":581},"À propos",{"href":582,"dataGaName":583,"dataGaLocation":314},"/fr-fr/company/","about",{"text":585,"config":586,"footerGa":589},"Carrières",{"href":587,"dataGaName":588,"dataGaLocation":314},"/jobs/","jobs",{"dataGaName":588},{"text":551,"config":591},{"href":553,"dataGaName":554,"dataGaLocation":314},{"text":593,"config":594},"Leadership",{"href":595,"dataGaName":596,"dataGaLocation":314},"/company/team/e-group/","leadership",{"text":598,"config":599},"Manuel",{"href":600,"dataGaName":601,"dataGaLocation":314},"https://handbook.gitlab.com/","handbook",{"text":603,"config":604},"Relations avec les investisseurs",{"href":605,"dataGaName":606,"dataGaLocation":314},"https://ir.gitlab.com/","investor relations",{"text":608,"config":609},"Trust Center",{"href":610,"dataGaName":611,"dataGaLocation":314},"/fr-fr/security/","trust center",{"text":613,"config":614},"Centre pour la transparence de l’IA",{"href":615,"dataGaName":616,"dataGaLocation":314},"/fr-fr/ai-transparency-center/","ai transparency center",{"text":618,"config":619},"Newsletter",{"href":620,"dataGaName":621,"dataGaLocation":314},"/company/contact/#contact-forms","newsletter",{"text":623,"config":624},"Presse",{"href":625,"dataGaName":626,"dataGaLocation":314},"/press/","press",{"text":628,"config":629,"menu":630},"Nous contacter",{"dataNavLevelOne":574},{"type":365,"columns":631},[632],{"items":633},[634,637,642],{"text":321,"config":635},{"href":323,"dataGaName":636,"dataGaLocation":314},"talk to sales",{"text":638,"config":639},"Portail d'assistance",{"href":640,"dataGaName":641,"dataGaLocation":314},"https://support.gitlab.com","support portal",{"text":643,"config":644},"Portail clients GitLab",{"href":645,"dataGaName":646,"dataGaLocation":314},"https://customers.gitlab.com/customers/sign_in/","customer portal",{"close":648,"login":649,"suggestions":656},"Fermer",{"text":650,"link":651},"Pour rechercher des dépôts et des projets, connectez-vous à",{"text":652,"config":653},"GitLab.com",{"href":328,"dataGaName":654,"dataGaLocation":655},"search login","search",{"text":657,"default":658},"Suggestions",[659,662,667,669,674,679],{"text":345,"config":660},{"href":350,"dataGaName":661,"dataGaLocation":655},"GitLab Duo Agent Platform",{"text":663,"config":664},"Suggestions de code (IA)",{"href":665,"dataGaName":666,"dataGaLocation":655},"/fr-fr/solutions/code-suggestions/","Code Suggestions (AI)",{"text":381,"config":668},{"href":383,"dataGaName":381,"dataGaLocation":655},{"text":670,"config":671},"GitLab sur AWS",{"href":672,"dataGaName":673,"dataGaLocation":655},"/fr-fr/partners/technology-partners/aws/","GitLab on AWS",{"text":675,"config":676},"GitLab sur Google Cloud",{"href":677,"dataGaName":678,"dataGaLocation":655},"/fr-fr/partners/technology-partners/google-cloud-platform/","GitLab on Google Cloud",{"text":680,"config":681},"Pourquoi utiliser GitLab ?",{"href":358,"dataGaName":682,"dataGaLocation":655},"Why GitLab?",{"freeTrial":684,"mobileIcon":689,"desktopIcon":694,"secondaryButton":697},{"text":685,"config":686},"Commencer votre essai gratuit",{"href":687,"dataGaName":319,"dataGaLocation":688},"https://gitlab.com/-/trials/new/","nav",{"altText":690,"config":691},"Icône GitLab",{"src":692,"dataGaName":693,"dataGaLocation":688},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1758203874/jypbw1jx72aexsoohd7x.svg","gitlab icon",{"altText":690,"config":695},{"src":696,"dataGaName":693,"dataGaLocation":688},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1758203875/gs4c8p8opsgvflgkswz9.svg",{"text":698,"config":699},"Commencer",{"href":700,"dataGaName":701,"dataGaLocation":688},"https://gitlab.com/-/trial_registrations/new?glm_source=about.gitlab.com/fr-fr/get-started/","get started",{"freeTrial":703,"mobileIcon":707,"desktopIcon":709},{"text":704,"config":705},"En savoir plus sur GitLab Duo",{"href":350,"dataGaName":706,"dataGaLocation":688},"gitlab duo",{"altText":690,"config":708},{"src":692,"dataGaName":693,"dataGaLocation":688},{"altText":690,"config":710},{"src":696,"dataGaName":693,"dataGaLocation":688},{"button":712,"mobileIcon":717,"desktopIcon":719},{"text":713,"config":714},"/switch",{"href":715,"dataGaName":716,"dataGaLocation":688},"#contact","switch",{"altText":690,"config":718},{"src":692,"dataGaName":693,"dataGaLocation":688},{"altText":690,"config":720},{"src":721,"dataGaName":693,"dataGaLocation":688},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1773335277/ohhpiuoxoldryzrnhfrh.png",{"freeTrial":723,"mobileIcon":728,"desktopIcon":730},{"text":724,"config":725},"Retour aux tarifs",{"href":465,"dataGaName":726,"dataGaLocation":688,"icon":727},"back to pricing","GoBack",{"altText":690,"config":729},{"src":692,"dataGaName":693,"dataGaLocation":688},{"altText":690,"config":731},{"src":696,"dataGaName":693,"dataGaLocation":688},{"title":733,"button":734,"config":739},"Découvrez comment l'IA agentique transforme la livraison logicielle",{"text":735,"config":736},"Rejoindre GitLab Transcend en direct le 10 juin",{"href":737,"dataGaName":738,"dataGaLocation":314},"/fr-fr/events/transcend/virtual/","transcend event",{"layout":740,"disabled":295},"release",{"data":742},{"text":743,"source":744,"edit":750,"contribute":755,"config":760,"items":765,"minimal":973},"Git est une marque déposée de Software Freedom Conservancy et notre utilisation de « GitLab » est sous licence.",{"text":745,"config":746},"Afficher le code source de la page",{"href":747,"dataGaName":748,"dataGaLocation":749},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/","page source","footer",{"text":751,"config":752},"Modifier cette page",{"href":753,"dataGaName":754,"dataGaLocation":749},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/-/blob/main/content/","web ide",{"text":756,"config":757},"Veuillez contribuer",{"href":758,"dataGaName":759,"dataGaLocation":749},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/-/blob/main/CONTRIBUTING.md/","please contribute",{"twitter":761,"facebook":762,"youtube":763,"linkedin":764},"https://twitter.com/gitlab","https://www.facebook.com/gitlab","https://www.youtube.com/channel/UCnMGQ8QHMAnVIsI3xJrihhg","https://www.linkedin.com/company/gitlab-com",[766,813,866,910,940],{"title":463,"links":767,"subMenu":782},[768,772,777],{"text":769,"config":770},"Voir les forfaits",{"href":465,"dataGaName":771,"dataGaLocation":749},"view plans",{"text":773,"config":774},"GitLab Premium",{"href":775,"dataGaName":776,"dataGaLocation":749},"/fr-fr/pricing/premium/","why premium",{"text":778,"config":779},"GitLab Ultimate",{"href":780,"dataGaName":781,"dataGaLocation":749},"/fr-fr/pricing/ultimate/","why ultimate",[783],{"title":628,"links":784},[785,788,791,793,798,803,808],{"text":786,"config":787},"Contacter l'équipe commerciale",{"href":323,"dataGaName":324,"dataGaLocation":749},{"text":789,"config":790},"Assistance GitLab",{"href":640,"dataGaName":641,"dataGaLocation":749},{"text":643,"config":792},{"href":645,"dataGaName":646,"dataGaLocation":749},{"text":794,"config":795},"Statut",{"href":796,"dataGaName":797,"dataGaLocation":749},"https://status.gitlab.com/","status",{"text":799,"config":800},"Conditions d'utilisation",{"href":801,"dataGaName":802,"dataGaLocation":749},"/terms/","terms of use",{"text":804,"config":805},"Politique de confidentialité",{"href":806,"dataGaName":807,"dataGaLocation":749},"/fr-fr/privacy/","privacy statement",{"text":809,"config":810},"Gérer vos cookies",{"dataGaName":811,"dataGaLocation":749,"id":812,"isOneTrustButton":298},"cookie preferences","ot-sdk-btn",{"title":361,"links":814,"subMenu":823},[815,819],{"text":816,"config":817},"Plateforme DevSecOps",{"href":343,"dataGaName":818,"dataGaLocation":749},"devsecops platform",{"text":820,"config":821},"Développement assisté par l'IA",{"href":350,"dataGaName":822,"dataGaLocation":749},"ai-assisted development",[824],{"title":825,"links":826},"Thèmes",[827,831,836,841,846,851,856,861],{"text":381,"config":828},{"href":829,"dataGaName":830,"dataGaLocation":749},"/fr-fr/topics/ci-cd/","cicd",{"text":832,"config":833},"GitOps",{"href":834,"dataGaName":835,"dataGaLocation":749},"/fr-fr/topics/gitops/","gitops",{"text":837,"config":838},"DevOps",{"href":839,"dataGaName":840,"dataGaLocation":749},"/fr-fr/topics/devops/","devops",{"text":842,"config":843},"Contrôle de version",{"href":844,"dataGaName":845,"dataGaLocation":749},"/fr-fr/topics/version-control/","version control",{"text":847,"config":848},"DevSecOps",{"href":849,"dataGaName":850,"dataGaLocation":749},"/fr-fr/topics/devsecops/","devsecops",{"text":852,"config":853},"Cloud-native",{"href":854,"dataGaName":855,"dataGaLocation":749},"/fr-fr/topics/cloud-native/","cloud native",{"text":857,"config":858},"IA pour la programmation",{"href":859,"dataGaName":860,"dataGaLocation":749},"/fr-fr/topics/devops/ai-for-coding/","ai for coding",{"text":862,"config":863},"IA agentique",{"href":864,"dataGaName":865,"dataGaLocation":749},"/fr-fr/topics/agentic-ai/","agentic ai",{"title":867,"links":868},"Solutions",[869,872,874,879,882,885,888,891,894,897,900,905],{"text":406,"config":870},{"href":401,"dataGaName":871,"dataGaLocation":749},"Application Security Testing",{"text":393,"config":873},{"href":377,"dataGaName":378,"dataGaLocation":749},{"text":875,"config":876},"Développement Agile",{"href":877,"dataGaName":878,"dataGaLocation":749},"/fr-fr/solutions/agile-delivery/","agile delivery",{"text":388,"config":880},{"href":390,"dataGaName":881,"dataGaLocation":749},"source code management",{"text":381,"config":883},{"href":383,"dataGaName":884,"dataGaLocation":749},"continuous integration & delivery",{"text":432,"config":886},{"href":434,"dataGaName":887,"dataGaLocation":749},"value stream management",{"text":832,"config":889},{"href":890,"dataGaName":835,"dataGaLocation":749},"/fr-fr/solutions/gitops/",{"text":892,"config":893},"Entreprises",{"href":448,"dataGaName":449,"dataGaLocation":749},{"text":895,"config":896},"PME",{"href":454,"dataGaName":455,"dataGaLocation":749},{"text":898,"config":899},"Secteur public",{"href":460,"dataGaName":461,"dataGaLocation":749},{"text":901,"config":902},"Éducation",{"href":903,"dataGaName":904,"dataGaLocation":749},"/fr-fr/solutions/education/","education",{"text":906,"config":907},"Services financiers",{"href":908,"dataGaName":909,"dataGaLocation":749},"/fr-fr/solutions/finance/","financial services",{"title":468,"links":911},[912,914,916,918,921,923,926,928,930,932,934,936,938],{"text":481,"config":913},{"href":483,"dataGaName":484,"dataGaLocation":749},{"text":486,"config":915},{"href":488,"dataGaName":489,"dataGaLocation":749},{"text":491,"config":917},{"href":493,"dataGaName":494,"dataGaLocation":749},{"text":496,"config":919},{"href":498,"dataGaName":920,"dataGaLocation":749},"docs",{"text":519,"config":922},{"href":521,"dataGaName":522,"dataGaLocation":749},{"text":924,"config":925},"Quoi de neuf",{"href":569,"dataGaName":570,"dataGaLocation":749},{"text":514,"config":927},{"href":516,"dataGaName":517,"dataGaLocation":749},{"text":528,"config":929},{"href":530,"dataGaName":531,"dataGaLocation":749},{"text":536,"config":931},{"href":538,"dataGaName":539,"dataGaLocation":749},{"text":541,"config":933},{"href":543,"dataGaName":544,"dataGaLocation":749},{"text":546,"config":935},{"href":548,"dataGaName":549,"dataGaLocation":749},{"text":551,"config":937},{"href":553,"dataGaName":554,"dataGaLocation":749},{"text":556,"config":939},{"href":558,"dataGaName":559,"dataGaLocation":749},{"title":572,"links":941},[942,944,946,948,950,952,957,962,964,966,968],{"text":580,"config":943},{"href":582,"dataGaName":574,"dataGaLocation":749},{"text":585,"config":945},{"href":587,"dataGaName":588,"dataGaLocation":749},{"text":593,"config":947},{"href":595,"dataGaName":596,"dataGaLocation":749},{"text":598,"config":949},{"href":600,"dataGaName":601,"dataGaLocation":749},{"text":603,"config":951},{"href":605,"dataGaName":606,"dataGaLocation":749},{"text":953,"config":954},"Développement durable",{"href":955,"dataGaName":956,"dataGaLocation":749},"/sustainability/","Sustainability",{"text":958,"config":959},"Diversité, inclusion et appartenance (DIB)",{"href":960,"dataGaName":961,"dataGaLocation":749},"/fr-fr/diversity-inclusion-belonging/","Diversity, inclusion and belonging",{"text":608,"config":963},{"href":610,"dataGaName":611,"dataGaLocation":749},{"text":618,"config":965},{"href":620,"dataGaName":621,"dataGaLocation":749},{"text":623,"config":967},{"href":625,"dataGaName":626,"dataGaLocation":749},{"text":969,"config":970},"Déclaration de transparence sur l'esclavage moderne",{"href":971,"dataGaName":972,"dataGaLocation":749},"https://handbook.gitlab.com/handbook/legal/modern-slavery-act-transparency-statement/","modern slavery transparency statement",{"items":974},[975,977,980],{"text":799,"config":976},{"href":801,"dataGaName":802,"dataGaLocation":749},{"text":978,"config":979},"Gestion des cookies",{"dataGaName":811,"dataGaLocation":749,"id":812,"isOneTrustButton":298},{"text":804,"config":981},{"href":806,"dataGaName":807,"dataGaLocation":749},[983,997],{"id":984,"title":7,"body":294,"config":985,"content":987,"description":294,"extension":991,"meta":992,"navigation":298,"path":993,"seo":994,"stem":995,"__hash__":996},"blogAuthors/en-us/blog/authors/mark-settle.yml",{"template":986},"BlogAuthor",{"name":7,"config":988},{"headshot":989,"ctfId":990},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1779215794/fw131xublkzdvjdadd4q.png","marksettle","yml",{},"/en-us/blog/authors/mark-settle",{},"en-us/blog/authors/mark-settle","aur3jcqDyhashUtyXhd1W7N3ZrN09waCQv135AABEt4",{"id":998,"title":8,"body":294,"config":999,"content":1000,"description":294,"extension":991,"meta":1003,"navigation":298,"path":1004,"seo":1005,"stem":1006,"__hash__":1007},"blogAuthors/en-us/blog/authors/joel-patterson.yml",{"template":986},{"name":8,"config":1001},{"headshot":1002},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1779470299/ogjvh6vwl4jv6g69mjzl.jpg",{},"/en-us/blog/authors/joel-patterson",{},"en-us/blog/authors/joel-patterson","d20r_vnYvJS-Lm4joe8-19EJbQDBUfE59dcCRokaeA4",[1009,1017,1024],{"title":1010,"description":1011,"heroImage":1012,"category":290,"date":1013,"authors":1014,"slug":1016,"externalUrl":294},"Renforcez le périmètre de votre pipeline à l'ère du développement assisté par l'IA","Le pipeline est désormais le point de convergence entre équipes, agents et code tiers. Les entreprises ont besoin d'un plan de contrôle capable de voir, d'appliquer et de corriger chaque changement.","https://res.cloudinary.com/about-gitlab-com/image/upload/v1765809212/noh0mdfn9o94ry9ykura.png","2026-05-29",[1015],"Vishal Thenge","harden-pipeline-perimeter-for-ai-assisted-coding",{"title":1018,"description":1019,"heroImage":296,"category":290,"date":1020,"authors":1021,"slug":1023,"externalUrl":294},"Couverture complète des scanners de sécurité en quelques minutes","Les profils de configuration de sécurité accélèrent le déploiement des scanners. Découvrez comment cette nouveauté de GitLab 19.0 couvre des milliers de projets en quelques minutes.","2026-05-27",[1022],"Michael Omokoh","security-configuration-profiles",{"title":1025,"description":1026,"heroImage":296,"category":290,"date":1027,"authors":1028,"slug":1030,"externalUrl":294},"Gérez vos identifiants CI/CD avec le gestionnaire de secrets de GitLab","Chaque secret est limité à son environnement ou sa branche et régi par les mêmes contrôles que votre code. Découvrez la version bêta publique dans GitLab 19.0.","2026-05-22",[1029,7],"Joe Randazzo","secrets-manager-in-public-beta",{"promotions":1032},[1033,1047,1058,1069],{"id":1034,"categories":1035,"header":1037,"text":1038,"button":1039,"image":1044},"ai-modernization",[1036],"ai","L'IA tient-elle ses promesses à grande échelle ?","Le questionnaire ne prendra pas plus de 5 minutes.",{"text":1040,"config":1041},"Obtenez votre score de maturité IA",{"href":1042,"dataGaName":1043,"dataGaLocation":522},"/fr-fr/assessments/ai-modernization-assessment/","modernization assessment",{"config":1045},{"src":1046},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1772138786/qix0m7kwnd8x2fh1zq49.png",{"id":1048,"categories":1049,"header":1050,"text":1038,"button":1051,"image":1055},"devops-modernization",[306,850],"Vous contentez-vous de gérer des outils ou de livrer des innovations ?",{"text":1052,"config":1053},"Obtenez votre score de maturité DevOps",{"href":1054,"dataGaName":1043,"dataGaLocation":522},"/fr-fr/assessments/devops-modernization-assessment/",{"config":1056},{"src":1057},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1772138785/eg818fmakweyuznttgid.png",{"id":1059,"categories":1060,"header":1061,"text":1038,"button":1062,"image":1066},"security-modernization",[290],"Faut-il sacrifier la rapidité pour garantir la sécurité ?",{"text":1063,"config":1064},"Obtenez votre score de maturité en matière de sécurité",{"href":1065,"dataGaName":1043,"dataGaLocation":522},"/fr-fr/assessments/security-modernization-assessment/",{"config":1067},{"src":1068},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1772138786/p4pbqd9nnjejg5ds6mdk.png",{"id":1070,"paths":1071,"header":1074,"text":1075,"button":1076,"image":1081},"github-azure-migration",[1072,1073],"migration-from-azure-devops-to-gitlab","integrating-azure-devops-scm-and-gitlab","Votre équipe est-elle prête pour la migration de GitHub vers Azure ?","GitHub a déjà commencé sa migration vers Azure. Découvrez ce que cela signifie pour vous.",{"text":1077,"config":1078},"Découvrez les différences entre GitLab et GitHub",{"href":1079,"dataGaName":1080,"dataGaLocation":522},"/fr-fr/compare/gitlab-vs-github/github-azure-migration/","github azure migration",{"config":1082},{"src":1057},{"header":1084,"blurb":1085,"button":1086,"secondaryButton":1090},"Commencez à développer plus rapidement dès aujourd'hui","Découvrez ce que votre équipe peut accomplir avec la plateforme d'orchestration intelligente pour le DevSecOps.\n",{"text":316,"config":1087},{"href":1088,"dataGaName":319,"dataGaLocation":1089},"https://gitlab.com/-/trial_registrations/new?glm_content=default-saas-trial&glm_source=about.gitlab.com/fr-fr/","feature",{"text":786,"config":1091},{"href":323,"dataGaName":324,"dataGaLocation":1089},1781392777701]