Fine-Grained Job Tokens Now Available for Secure and Scoped CI/CD
GitLab has officially launched Fine-Grained Job Tokens, enhancing CI/CD security by allowing scoped permissions for job authentication. Ideal for cross-project pipelines.
Fine-Grained Job Tokens Now Generally Available
We’re thrilled to announce the general availability of Fine-Grained Job Tokens in GitLab, a major step forward in securing and streamlining CI/CD pipelines. This powerful feature enables pipeline jobs to authenticate to the GitLab API and GitLab packages with stricter permission boundaries, limiting token access only to specific scopes and resources.
Previously, Job Tokens offered fewer customisation capabilities, often exposing more access than necessary—an issue particularly concerning when dealing with cross-project pipelines. Fine-Grained Job Tokens resolve this by allowing project maintainers to explicitly define token permissions per project, service, or API access level. The result? Improved security, stronger compliance, and fewer risks across DevOps workflows.
Key benefits include:
- Scoped Access: Limit token permissions to only what’s required for the job, reducing exposure.
- API and Package Registry Support: Jobs can now access GitLab APIs and packages with precise control mechanisms.
- Cross-Project Pipeline Security: Manage access to downstream pipelines with confidence, without compromising your repository’s integrity.
Additionally, the rollout of this feature marks another milestone in GitLab’s commitment to zero-trust security principles, ensuring that access is always minimal and auditable.
If you’re an organisation operating in the United Kingdom, Czech Republic, Slovakia, Croatia, Serbia, Slovenia, Macedonia—or have DevOps teams across Israel, South Africa, or Paraguay—our expert consultants at IDEA GitLab Solutions are ready to assist you. We offer strategic guidance, implementation support, and licensing solutions tailored for your region.
Contact us today to secure your pipelines with Fine-Grained Job Tokens and to get the most out of your GitLab investment.
Tags:GitLabDevOpsCI/CDJob TokensFine-Grained PermissionsSecurityCross-Project PipelinesGitLab APIGitLab PackagesZero-Trust
Other languages:ČeštinaSlovenčinaHrvatskiSrpski (Latinica)Српски (Ћирилица)
- Fast and Secure AI Agent Deployment to Google Cloud with GitLab
- Improving CI/CD Security and Usability with GitLab Pipeline Inputs
- Why Now is the Time for Embedded DevSecOps - Secure Your Software Lifecycle
- Automating Role-Based Access Control (RBAC) at Enterprise Scale with GitLab
- What’s New in Git 2.50 – Boosting Clone Efficiency and Worktree Usability