The Gitlab team released security patches that address a critical flaw that allows an attacker to run pipelines as another user. This affects GitLab versions 16.3.4 and 16.2.7. The Uganda National CERT and Coordination Center (CERT.UG/CC) strongly advises developers that use GitLab affected services to review and implement the appropriate patches. The details of the updates can be found here.
