GitLab says it is on track to launch its agentic AI iteration of the Duo assistance technology this winter.
CEO William Staples gave the update on GitLab Duo Workflow during its first quarter earnings call this week.
The firm took its first run at incorporating AI into its platform in 2023, when it unwrapped Duo. Last year it opened the waitlist for Duo Workflow, which it described as an autonomous AI agent to “transform how teams build, secure, deploy, and monitor software.”
Staples said the company was on schedule to launch the Agentic-AI solution this winter and was getting good “feedback from our workflow private beta participants.”
Apparently, dozens of participants are now in the beta program, and he claimed that “Engineers describe confidently delegating complex multi-step refactoring tasks to workflow, and then watching as it methodically outlines a transparent execution plan, resulting in clean properly committed code.”
Elsewhere on the call, the company reported revenues up 27 percent year-on-year to $214.5 million, with net losses of $35.9 million, down from $55.2 million a year ago.
In the earnings call, CFO Brian Robins said it hosted its Summit event in the first quarter, which meant a “nonrecurring expense of $15 million.”
Meanwhile, GitLab has this week pushed out patches for vulnerabilities in multiple versions of the Community and Enterprise Editions of its CI/CD platform.
Ten vulnerability fixes were issued in all, four of which attracted a “high” severity rating. Three of these affected both the enterprise and community editions. They include an HTML injection flaw that could have allowed an attacker to take over accounts, and which affected all versions starting with 18.0 before 18.0.2.
A cross-site scripting issue could, “under certain conditions… could have allowed a successful attacker to act in the context of a legitimate user by injecting a malicious script into the snippet viewer.” This affected multiple versions of the platform.
The other high severity flaws included a missing authorization issue which affected GitLab Ultimate EE, and a potential denial of service issue affecting both the Community and Enterprise versions.
Five of the flaws were rated medium, while one was rated low. Full details of all the flaws and fixes are here.
The firm has strongly recommended “all self-managed GitLab installations be upgraded to one of these versions immediately.” Gitlab dedicated customers do not need to take any action.