GitLab & IBM launch platform to modernise mainframe DevOps
GitLab and IBM have introduced GitLab Ultimate for IBM Z, a solution designed to address the distinct challenges faced by mainframe software development teams.
The new offering targets long-standing issues within enterprise mainframe environments, where teams have traditionally operated with outdated tools. This situation has often resulted in slow delivery cycles, heightened security risks, and increased operational costs. By providing native continuous integration and continuous deployment (CI/CD) pipelines on IBM z/OS, unified source code management, and direct integration with IBM Developer for Z, the companies aim to place mainframe developers on a more equal footing with their counterparts working in cloud-native settings.
Mainframe development challenges
Many organisations running mission-critical workloads on IBM Z systems encounter significant hurdles using conventional DevSecOps tools, which are not tailored to the specifics of mainframe development. While cloud-native teams benefit from automated, collaborative environments and robust pipelines, mainframe teams have historically had to rely on legacy software, workaround solutions, and manual processes such as SSH file transfers. These practices introduce security and compliance concerns and make audits more complex.
Such workarounds become particularly problematic in highly regulated sectors, where maintaining strict audit trails and minimising vulnerabilities are essential. The continued use of separate, legacy development toolchains results in higher licensing and maintenance costs, compared to more modern alternatives, while also leading to slower delivery cycles and making it harder for enterprises to attract new technical talent.
Katie Norton, Research Manager, DevSecOps and Software Supply Chain Security at IDC, commented on the significance of the new solution: "GitLab Ultimate for IBM Z represents an important step in addressing a long-standing industry challenge. IDC research shows that mainframe developers often work with legacy tooling that contributes to delivery inefficiencies and makes it harder to attract new talent. With this offering, modern DevSecOps capabilities and unified workflows are brought directly to the mainframe. This empowers developers to work more collaboratively and efficiently, while helping organisations accelerate innovation and integrate mainframe development into broader digital transformation strategies."
Modernisation and integration
The GitLab and IBM partnership intends to foster true modernisation by providing a unified development platform. This allows mainframe, cloud-native, web, and mobile teams to collaborate and share knowledge across environments, reducing technical silos. Teams are able to incrementally modernise without major business disruption, adopting more contemporary workflows while legacy systems continue to operate.
As organisations look towards hybrid cloud architectures, the integrated approach is intended to support applications that need to span both mainframe and cloud environments, giving development teams more options for deployment and collaboration.
Solution details
GitLab Ultimate for IBM Z delivers native z/OS Runner support, which enables CI/CD pipeline execution directly on mainframes, reducing the need for remote connections and associated security risks. The platform incorporates GitLab's source code management system, replacing legacy library managers and providing version control and searchable repositories, which may help organisations lower licensing fees and operational overhead.
Integration with IBM Developer for z/OS Enterprise Edition brings features such as dependency-based builds, automated code scanning, and debugging, designed to improve both the quality and security of releases. The offering also aims to give teams end-to-end visibility across mainframe and distributed activities, which is intended to support automated workflows and help retain development talent.
Capabilities for enterprise teams
By combining GitLab's DevSecOps platform with IBM's experience in mainframes, GitLab Ultimate for IBM Z is positioned as a solution for enterprises seeking to bridge the gap between legacy systems and newer, cloud-native environments. The goal is to facilitate modern development practices directly within mainframe settings, promoting collaboration, efficiency, and cost-effectiveness for enterprise users.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Techday NZ
2 days ago
- Techday NZ
Genesys unveils AI Studio to power safe, scalable virtual agents
Genesys has launched Genesys Cloud AI Studio, a platform designed to help organisations build, manage, and scale AI-powered customer engagement initiatives with a focus on governance and responsible deployment. Genesys Cloud AI Studio serves as a central hub for organisations to innovate using no-code tools and built-in compliance measures, introducing agentic AI features intended to improve personalisation and efficiency. Its first released capability, AI Guides, enables teams to design, deploy, and manage autonomous virtual agents across complex customer journeys at scale. According to Genesys, AI Guides distinguishes itself from existing solutions by supporting virtual agents that can adapt in real-time and manage multi-step interactions, rather than being restricted to pre-programmed flows. Governance and transparency are embedded in the design to address concerns over trust, ethics, and explainability—challenges that have hindered the wider adoption of AI among enterprises. Hayley Sutherland, Research Manager for Conversational AI at IDC, commented, "Scalable oversight of AI is critically important as we move into agentic decision-making and operation at lightning speed. For enterprises to leverage agentic AI, they must evolve how they approach AI governance and adoption. Genesys is offering organisations a robust entry point for autonomous AI, and the tools to help ensure every AI-powered customer interaction is secure, ethical and aligned to their strategy and values." Research from the IBM Institute for Business Value indicates that 80% of business leaders see explainability, ethics, bias, or trust as significant challenges to adopting AI, even with conventional deterministic forms such as generative AI. Half of those surveyed admit their organisations do not have the governance structures in place to adequately manage these risks. No-code tools and governance AI Guides is designed for businesses looking to scale semi-autonomous customer interactions with minimal technical resources. Unlike most virtual agents that rely on rigid programming and break down under complex scenarios, Genesys claims its new system allows virtual agents to reason, adapt, and make decisions dynamically within guardrails set by the business. This capacity is intended to enable agents to handle more complex, multi-step customer interactions, trigger enterprise-wide workflows, and act in key moments on behalf of brands, while maintaining compliance and oversight. The features of AI Guides include the ability to build or refine virtual agents using natural language or existing documentation, eliminating the need for coding. Users can design an interaction once and deploy it across different channels, which the company says will promote consistency and reduce duplication of effort. Other capabilities enable seamless integration with front, middle, and back-office systems, automate workflows, and implement testable safety controls to ensure accurate and policy-compliant engagement. Genesys highlights the model-agnostic architecture of AI Guides, which allows continuous A/B testing and iterative improvements as new language models become available. The Genesys Cloud platform supports integration with proprietary, open-source, and third-party models, including those available via Amazon Bedrock, as well as customer-provided models. Extending agentic AI AI Guides is intended to complement existing conversational, generative, and predictive AI functions within Genesys Cloud. Central to the suite is the Genesys Event Data Platform, which transforms raw interaction data into structured insights such as user intent, outcomes, and behaviour to improve customer profiles. Genesys suggests that this enhanced context leads to smarter orchestration and more effective training and operation of AI models. Further development is planned, with the forthcoming Genesys Cloud Custom Conversation Summaries tool touted to allow organisations to generate interaction summaries tailored to their unique brand voice, compliance needs, and formatting standards. Olivier Jouve, Chief Product Officer at Genesys, stated, "Many organisations lack the infrastructure and governance framework for the responsible use of agentic AI with their customers today. We're focused on giving every business an accessible and safe path forward. With AI Guides, Genesys is delivering the foundation for agentic orchestration with guardrails and trust embedded so our customers can accelerate innovation and position themselves to drive ROI and differentiation." Genesys anticipates that AI Studio capabilities, including AI Guides and Custom Conversation Summaries, will be available during the second quarter of its 2026 fiscal year, between 1 May and 31 July 2025.
Techday NZ
3 days ago
- Techday NZ
Cybercrime surge hits technology sector as AI & supply chain attacks rise
New research has detailed how cybercriminals are increasingly targeting technology companies, leveraging advanced technologies and dark web marketplaces to intensify the impact of their attacks across global industries. The latest threat intelligence series from Trustwave details how both the pace and sophistication of cyber threats facing the technology sector have increased, with attackers now utilising supply chain vulnerabilities, artificial intelligence (AI), and stolen credentials to gain access to broader digital ecosystems. Supply chain attacks Trustwave's analysis reveals that access to sensitive components—such as GitLab API keys—can be sold on the dark web for up to USD $1,400, with such credentials marketed specifically for use in supply chain attacks. The report also highlights that credentials harvested through infostealers are actively traded and weaponised by attackers, providing a route to infiltrate technology providers with the aim of moving laterally across entire supply chains and partner networks. Instead of simply targeting individuals with stolen logins, cybercriminals are utilising these credentials to access wider digital infrastructures. Once inside, they are able to traverse interconnected services and platforms, opening potential backdoors into multiple organisations. Rise in ransomware targeting tech companies Trustwave SpiderLabs found that ransomware activity is increasingly focusing on technology vendors, with 85 percent of ransomware incidents in early 2025 impacting this sector, as opposed to end-user companies. Prominent ransomware groups such as Ransomhub, CLOP, Akira, and Fog have intensified their campaigns, driving a 10 percent weekly increase in attacks against technology organisations worldwide. The report notes that these attacks often feature double extortion tactics and mass data exfiltration, primarily affecting software, cloud, and infrastructure providers. Attacks exploiting third-party dependencies, CI/CD (continuous integration and continuous deployment) pipelines, and open-source libraries have also led to widespread breaches, sometimes originating from just a single compromised vendor. Legacy systems and public exposure Publicly exposed services remain a persistent risk, with minimal changes in overall exposure year-on-year. However, the continued use of legacy operating systems and new, vulnerable network ports are providing ongoing opportunities for threat actors to gain footing in technology environments. Weaponisation of AI The research indicates that offensive AI is enabling cybercriminals to craft more effective phishing campaigns, social engineering threats, and supply chain attacks. This increase in sophistication is reflected in both the scale and success rate of cyber intrusions targeting technology firms. Professionalisation of cybercrime The dark web is underpinning a professional and collaborative cybercriminal ecosystem, with attackers monetising data and access obtained from successful breaches. The increasing value and frequency of supply chain attacks are being driven by this underground marketplace, as criminal groups work together to amplify their reach. "The technology sector's relentless pace of innovation is matched only by the creativity and determination of today's cyber adversaries. Our latest research shows that cybercriminals are not just keeping up—they're industrializing their operations, exploiting supply chains, and weaponizing AI," said Kory Daniels, CISO at Trustwave. "Trustwave is committed to helping technology organizations build resilience through world-class threat intelligence, MDR, and security solutions that address the realities of a hyper-connected digital world." Trustwave's reports, including the 2025 Risk Radar Report: Technology Sector and research supplements on AI threats and dark web supply chain attacks, offer a comprehensive look at these evolving risks. Recommendations for technology organisations Trustwave SpiderLabs has issued several recommendations for technology firms to better protect themselves in this hostile environment. Organisations are urged to implement robust identity and access controls—such as multi-factor authentication and least-privilege policies—and to maintain regular inventories, assessments, and patches for all systems, particularly those exposed to the public internet. The guidance also includes ongoing monitoring for dark web leaks and third-party risk via advanced threat intelligence, investing in AI-powered security solutions to detect and counter emerging attacks, and bolstering employee readiness through ongoing security training and incident response practice. These recommendations reflect the growing recognition that technology organisations serve as a digital backbone for industries globally, making their protection critical to wider economic and operational stability in the face of sustained cyber threats.
Techday NZ
5 days ago
- Techday NZ
GitLab & IBM launch platform to modernise mainframe DevOps
GitLab and IBM have introduced GitLab Ultimate for IBM Z, a solution designed to address the distinct challenges faced by mainframe software development teams. The new offering targets long-standing issues within enterprise mainframe environments, where teams have traditionally operated with outdated tools. This situation has often resulted in slow delivery cycles, heightened security risks, and increased operational costs. By providing native continuous integration and continuous deployment (CI/CD) pipelines on IBM z/OS, unified source code management, and direct integration with IBM Developer for Z, the companies aim to place mainframe developers on a more equal footing with their counterparts working in cloud-native settings. Mainframe development challenges Many organisations running mission-critical workloads on IBM Z systems encounter significant hurdles using conventional DevSecOps tools, which are not tailored to the specifics of mainframe development. While cloud-native teams benefit from automated, collaborative environments and robust pipelines, mainframe teams have historically had to rely on legacy software, workaround solutions, and manual processes such as SSH file transfers. These practices introduce security and compliance concerns and make audits more complex. Such workarounds become particularly problematic in highly regulated sectors, where maintaining strict audit trails and minimising vulnerabilities are essential. The continued use of separate, legacy development toolchains results in higher licensing and maintenance costs, compared to more modern alternatives, while also leading to slower delivery cycles and making it harder for enterprises to attract new technical talent. Katie Norton, Research Manager, DevSecOps and Software Supply Chain Security at IDC, commented on the significance of the new solution: "GitLab Ultimate for IBM Z represents an important step in addressing a long-standing industry challenge. IDC research shows that mainframe developers often work with legacy tooling that contributes to delivery inefficiencies and makes it harder to attract new talent. With this offering, modern DevSecOps capabilities and unified workflows are brought directly to the mainframe. This empowers developers to work more collaboratively and efficiently, while helping organisations accelerate innovation and integrate mainframe development into broader digital transformation strategies." Modernisation and integration The GitLab and IBM partnership intends to foster true modernisation by providing a unified development platform. This allows mainframe, cloud-native, web, and mobile teams to collaborate and share knowledge across environments, reducing technical silos. Teams are able to incrementally modernise without major business disruption, adopting more contemporary workflows while legacy systems continue to operate. As organisations look towards hybrid cloud architectures, the integrated approach is intended to support applications that need to span both mainframe and cloud environments, giving development teams more options for deployment and collaboration. Solution details GitLab Ultimate for IBM Z delivers native z/OS Runner support, which enables CI/CD pipeline execution directly on mainframes, reducing the need for remote connections and associated security risks. The platform incorporates GitLab's source code management system, replacing legacy library managers and providing version control and searchable repositories, which may help organisations lower licensing fees and operational overhead. Integration with IBM Developer for z/OS Enterprise Edition brings features such as dependency-based builds, automated code scanning, and debugging, designed to improve both the quality and security of releases. The offering also aims to give teams end-to-end visibility across mainframe and distributed activities, which is intended to support automated workflows and help retain development talent. Capabilities for enterprise teams By combining GitLab's DevSecOps platform with IBM's experience in mainframes, GitLab Ultimate for IBM Z is positioned as a solution for enterprises seeking to bridge the gap between legacy systems and newer, cloud-native environments. The goal is to facilitate modern development practices directly within mainframe settings, promoting collaboration, efficiency, and cost-effectiveness for enterprise users.
