[{"data":1,"prerenderedAt":749},["ShallowReactive",2],{"/de-de/blog/categories/ai-ml":3,"navigation-de-de":21,"banner-de-de":425,"footer-de-de":435,"ai-ml-category-page-total-items-de-de":640,"ai-ml-category-page-featured-de-de":641,"ai-ml-category-page-4-de-de":669},{"id":4,"title":5,"body":6,"category":6,"config":7,"content":11,"description":6,"extension":13,"meta":14,"navigation":15,"path":16,"seo":17,"slug":6,"stem":19,"testContent":6,"type":6,"__hash__":20},"blogCategories/de-de/blog/categories/ai-ml.yml","Ai Ml",null,{"template":8,"slug":9,"hide":10},"BlogCategory","ai-ml",false,{"name":12},"KI/ML","yml",{},true,"/de-de/blog/categories/ai-ml",{"title":12,"description":18},"Browse articles related to KI/ML on the GitLab Blog","de-de/blog/categories/ai-ml","1ZXMYZ95h3sv7hO1jba_Y-UZre4Tax4JM6QlNpoAdE4",{"data":22},{"logo":23,"freeTrial":28,"sales":33,"login":38,"items":43,"search":352,"minimal":387,"duo":405,"pricingDeployment":415},{"config":24},{"href":25,"dataGaName":26,"dataGaLocation":27},"/de-de/","gitlab logo","header",{"text":29,"config":30},"Kostenlose Testversion anfordern",{"href":31,"dataGaName":32,"dataGaLocation":27},"https://gitlab.com/-/trial_registrations/new?glm_source=about.gitlab.com&glm_content=default-saas-trial/","free trial",{"text":34,"config":35},"Vertrieb kontaktieren",{"href":36,"dataGaName":37,"dataGaLocation":27},"/de-de/sales/","sales",{"text":39,"config":40},"Anmelden",{"href":41,"dataGaName":42,"dataGaLocation":27},"https://gitlab.com/users/sign_in/","sign in",[44,71,167,172,273,333],{"text":45,"config":46,"cards":48},"Plattform",{"dataNavLevelOne":47},"platform",[49,55,63],{"title":45,"description":50,"link":51},"Die intelligente Orchestrierungsplattform für DevSecOps",{"text":52,"config":53},"Erkunde unsere Plattform",{"href":54,"dataGaName":47,"dataGaLocation":27},"/de-de/platform/",{"title":56,"description":57,"link":58},"GitLab Duo Agent Platform","Agentische KI für den gesamten Softwareentwicklungszyklus",{"text":59,"config":60},"Lerne GitLab Duo kennen",{"href":61,"dataGaName":62,"dataGaLocation":27},"/de-de/gitlab-duo-agent-platform/","gitlab duo agent platform",{"title":64,"description":65,"link":66},"Gründe, die für GitLab sprechen","Erfahre, warum Unternehmen auf GitLab setzen",{"text":67,"config":68},"Mehr erfahren",{"href":69,"dataGaName":70,"dataGaLocation":27},"/de-de/why-gitlab/","why gitlab",{"text":72,"left":15,"config":73,"link":75,"lists":79,"footer":149},"Produkt",{"dataNavLevelOne":74},"solutions",{"text":76,"config":77},"Alle Lösungen anzeigen",{"href":78,"dataGaName":74,"dataGaLocation":27},"/de-de/solutions/",[80,105,127],{"title":81,"description":82,"link":83,"items":88},"Automatisierung","CI/CD und Automatisierung zur Beschleunigung der Bereitstellung",{"config":84},{"icon":85,"href":86,"dataGaName":87,"dataGaLocation":27},"AutomatedCodeAlt","/de-de/solutions/delivery-automation/","automated software delivery",[89,93,96,101],{"text":90,"config":91},"CI/CD",{"href":92,"dataGaLocation":27,"dataGaName":90},"/de-de/solutions/continuous-integration/",{"text":56,"config":94},{"href":61,"dataGaLocation":27,"dataGaName":95},"gitlab duo agent platform - product menu",{"text":97,"config":98},"Quellcodeverwaltung",{"href":99,"dataGaLocation":27,"dataGaName":100},"/de-de/solutions/source-code-management/","Source Code Management",{"text":102,"config":103},"Automatisierte Softwarebereitstellung",{"href":86,"dataGaLocation":27,"dataGaName":104},"Automated software delivery",{"title":106,"description":107,"link":108,"items":113},"Sicherheit","Entwickle schneller, ohne die Sicherheit zu gefährden",{"config":109},{"href":110,"dataGaName":111,"dataGaLocation":27,"icon":112},"/de-de/solutions/application-security-testing/","security and compliance","ShieldCheckLight",[114,118,123],{"text":115,"config":116},"Application Security Testing",{"href":110,"dataGaName":117,"dataGaLocation":27},"Application security testing",{"text":119,"config":120},"Schutz der Software-Lieferkette",{"href":121,"dataGaLocation":27,"dataGaName":122},"/de-de/solutions/supply-chain/","Software supply chain security",{"text":124,"config":125},"Software Compliance",{"href":126,"dataGaName":124,"dataGaLocation":27},"/de-de/solutions/software-compliance/",{"title":128,"link":129,"items":134},"Bewertung",{"config":130},{"icon":131,"href":132,"dataGaName":133,"dataGaLocation":27},"DigitalTransformation","/de-de/solutions/visibility-measurement/","visibility and measurement",[135,139,144],{"text":136,"config":137},"Sichtbarkeit und Bewertung",{"href":132,"dataGaLocation":27,"dataGaName":138},"Visibility and Measurement",{"text":140,"config":141},"Wertstrommanagement",{"href":142,"dataGaLocation":27,"dataGaName":143},"/de-de/solutions/value-stream-management/","Value Stream Management",{"text":145,"config":146},"Analysen und Einblicke",{"href":147,"dataGaLocation":27,"dataGaName":148},"/de-de/solutions/analytics-and-insights/","Analytics and insights",{"title":150,"items":151},"GitLab für",[152,157,162],{"text":153,"config":154},"Enterprise",{"href":155,"dataGaLocation":27,"dataGaName":156},"/de-de/enterprise/","enterprise",{"text":158,"config":159},"Kleinunternehmen",{"href":160,"dataGaLocation":27,"dataGaName":161},"/de-de/small-business/","small business",{"text":163,"config":164},"den öffentlichen Sektor",{"href":165,"dataGaLocation":27,"dataGaName":166},"/de-de/solutions/public-sector/","public sector",{"text":168,"config":169},"Preise",{"href":170,"dataGaName":171,"dataGaLocation":27,"dataNavLevelOne":171},"/de-de/pricing/","pricing",{"text":173,"config":174,"link":176,"lists":180,"feature":260},"Ressourcen",{"dataNavLevelOne":175},"resources",{"text":177,"config":178},"Alle Ressourcen anzeigen",{"href":179,"dataGaName":175,"dataGaLocation":27},"/de-de/resources/",[181,214,232],{"title":182,"items":183},"Erste Schritte",[184,189,194,199,204,209],{"text":185,"config":186},"Installieren",{"href":187,"dataGaName":188,"dataGaLocation":27},"/de-de/install/","install",{"text":190,"config":191},"Kurzanleitungen",{"href":192,"dataGaName":193,"dataGaLocation":27},"/de-de/get-started/","quick setup checklists",{"text":195,"config":196},"Lernen",{"href":197,"dataGaLocation":27,"dataGaName":198},"https://university.gitlab.com/","learn",{"text":200,"config":201},"Produktdokumentation",{"href":202,"dataGaName":203,"dataGaLocation":27},"https://docs.gitlab.com/","product documentation",{"text":205,"config":206},"Best-Practice-Videos",{"href":207,"dataGaName":208,"dataGaLocation":27},"/de-de/getting-started-videos/","best practice videos",{"text":210,"config":211},"Integrationen",{"href":212,"dataGaName":213,"dataGaLocation":27},"/de-de/integrations/","integrations",{"title":215,"items":216},"Entdecken",[217,222,227],{"text":218,"config":219},"Kundenerfolge",{"href":220,"dataGaName":221,"dataGaLocation":27},"/de-de/customers/","customer success stories",{"text":223,"config":224},"Blog",{"href":225,"dataGaName":226,"dataGaLocation":27},"/de-de/blog/","blog",{"text":228,"config":229},"Remote",{"href":230,"dataGaName":231,"dataGaLocation":27},"https://handbook.gitlab.com/handbook/company/culture/all-remote/","remote",{"title":233,"items":234},"Vernetzen",[235,240,245,250,255],{"text":236,"config":237},"GitLab-Services",{"href":238,"dataGaName":239,"dataGaLocation":27},"/de-de/services/","services",{"text":241,"config":242},"Community",{"href":243,"dataGaName":244,"dataGaLocation":27},"/community/","community",{"text":246,"config":247},"Forum",{"href":248,"dataGaName":249,"dataGaLocation":27},"https://forum.gitlab.com/","forum",{"text":251,"config":252},"Veranstaltungen",{"href":253,"dataGaName":254,"dataGaLocation":27},"/events/","events",{"text":256,"config":257},"Partner",{"href":258,"dataGaName":259,"dataGaLocation":27},"/de-de/partners/","partners",{"backgroundColor":261,"textColor":262,"text":263,"image":264,"link":268},"#2f2a6b","#fff","Perspektiven für die Softwareentwicklung der Zukunft",{"altText":265,"config":266},"the source promo card",{"src":267},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1758208064/dzl0dbift9xdizyelkk4.svg",{"text":269,"config":270},"Lies die News",{"href":271,"dataGaName":272,"dataGaLocation":27},"/de-de/the-source/","the source",{"text":274,"config":275,"lists":277},"Unternehmen",{"dataNavLevelOne":276},"company",[278],{"items":279},[280,285,291,293,298,303,308,313,318,323,328],{"text":281,"config":282},"Über",{"href":283,"dataGaName":284,"dataGaLocation":27},"/de-de/company/","about",{"text":286,"config":287,"footerGa":290},"Karriere",{"href":288,"dataGaName":289,"dataGaLocation":27},"/jobs/","jobs",{"dataGaName":289},{"text":251,"config":292},{"href":253,"dataGaName":254,"dataGaLocation":27},{"text":294,"config":295},"Geschäftsführung",{"href":296,"dataGaName":297,"dataGaLocation":27},"/company/team/e-group/","leadership",{"text":299,"config":300},"Team",{"href":301,"dataGaName":302,"dataGaLocation":27},"/company/team/","team",{"text":304,"config":305},"Handbuch",{"href":306,"dataGaName":307,"dataGaLocation":27},"https://handbook.gitlab.com/","handbook",{"text":309,"config":310},"Investor Relations",{"href":311,"dataGaName":312,"dataGaLocation":27},"https://ir.gitlab.com/","investor relations",{"text":314,"config":315},"Trust Center",{"href":316,"dataGaName":317,"dataGaLocation":27},"/de-de/security/","trust center",{"text":319,"config":320},"AI Transparency Center",{"href":321,"dataGaName":322,"dataGaLocation":27},"/de-de/ai-transparency-center/","ai transparency center",{"text":324,"config":325},"Newsletter",{"href":326,"dataGaName":327,"dataGaLocation":27},"/company/contact/#contact-forms","newsletter",{"text":329,"config":330},"Presse",{"href":331,"dataGaName":332,"dataGaLocation":27},"/press/","press",{"text":334,"config":335,"lists":336},"Kontakt",{"dataNavLevelOne":276},[337],{"items":338},[339,342,347],{"text":34,"config":340},{"href":36,"dataGaName":341,"dataGaLocation":27},"talk to sales",{"text":343,"config":344},"Support-Portal",{"href":345,"dataGaName":346,"dataGaLocation":27},"https://support.gitlab.com","support portal",{"text":348,"config":349},"Kundenportal",{"href":350,"dataGaName":351,"dataGaLocation":27},"https://customers.gitlab.com/customers/sign_in/","customer portal",{"close":353,"login":354,"suggestions":361},"Schließen",{"text":355,"link":356},"Um Repositories und Projekte zu durchsuchen, melde dich an bei",{"text":357,"config":358},"gitlab.com",{"href":41,"dataGaName":359,"dataGaLocation":360},"search login","search",{"text":362,"default":363},"Vorschläge",[364,366,371,373,378,383],{"text":56,"config":365},{"href":61,"dataGaName":56,"dataGaLocation":360},{"text":367,"config":368},"Code Suggestions (KI)",{"href":369,"dataGaName":370,"dataGaLocation":360},"/de-de/solutions/code-suggestions/","Code Suggestions (AI)",{"text":90,"config":372},{"href":92,"dataGaName":90,"dataGaLocation":360},{"text":374,"config":375},"GitLab auf AWS",{"href":376,"dataGaName":377,"dataGaLocation":360},"/de-de/partners/technology-partners/aws/","GitLab on AWS",{"text":379,"config":380},"GitLab auf Google Cloud",{"href":381,"dataGaName":382,"dataGaLocation":360},"/de-de/partners/technology-partners/google-cloud-platform/","GitLab on Google Cloud",{"text":384,"config":385},"Warum GitLab?",{"href":69,"dataGaName":386,"dataGaLocation":360},"Why GitLab?",{"freeTrial":388,"mobileIcon":393,"desktopIcon":398,"secondaryButton":401},{"text":389,"config":390},"Kostenlos testen",{"href":391,"dataGaName":32,"dataGaLocation":392},"https://gitlab.com/-/trials/new/","nav",{"altText":394,"config":395},"GitLab-Symbol",{"src":396,"dataGaName":397,"dataGaLocation":392},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1758203874/jypbw1jx72aexsoohd7x.svg","gitlab icon",{"altText":394,"config":399},{"src":400,"dataGaName":397,"dataGaLocation":392},"https://res.cloudinary.com/about-gitlab-com/image/upload/v1758203875/gs4c8p8opsgvflgkswz9.svg",{"text":182,"config":402},{"href":403,"dataGaName":404,"dataGaLocation":392},"https://gitlab.com/-/trial_registrations/new?glm_source=about.gitlab.com/de-de/compare/gitlab-vs-github/","get started",{"freeTrial":406,"mobileIcon":411,"desktopIcon":413},{"text":407,"config":408},"Erfahre mehr über GitLab Duo",{"href":409,"dataGaName":410,"dataGaLocation":392},"/de-de/gitlab-duo/","gitlab duo",{"altText":394,"config":412},{"src":396,"dataGaName":397,"dataGaLocation":392},{"altText":394,"config":414},{"src":400,"dataGaName":397,"dataGaLocation":392},{"freeTrial":416,"mobileIcon":421,"desktopIcon":423},{"text":417,"config":418},"Zurück zur Preisübersicht",{"href":170,"dataGaName":419,"dataGaLocation":392,"icon":420},"back to pricing","GoBack",{"altText":394,"config":422},{"src":396,"dataGaName":397,"dataGaLocation":392},{"altText":394,"config":424},{"src":400,"dataGaName":397,"dataGaLocation":392},{"title":426,"button":427,"config":432},"Sieh dir an, wie agentische KI die Softwarebereitstellung transformiert",{"text":428,"config":429},"GitLab Transcend jetzt ansehen",{"href":430,"dataGaName":431,"dataGaLocation":27},"/de-de/events/transcend/virtual/","transcend event",{"layout":433,"icon":434},"release","AiStar",{"data":436},{"text":437,"source":438,"edit":444,"contribute":449,"config":454,"items":459,"minimal":632},"Git ist eine Marke von Software Freedom Conservancy und unsere Verwendung von „GitLab“ erfolgt unter Lizenz.",{"text":439,"config":440},"Quelltext der Seite anzeigen",{"href":441,"dataGaName":442,"dataGaLocation":443},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/","page source","footer",{"text":445,"config":446},"Diese Seite bearbeiten",{"href":447,"dataGaName":448,"dataGaLocation":443},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/-/blob/main/content/","web ide",{"text":450,"config":451},"Beteilige dich",{"href":452,"dataGaName":453,"dataGaLocation":443},"https://gitlab.com/gitlab-com/marketing/digital-experience/about-gitlab-com/-/blob/main/CONTRIBUTING.md/","please contribute",{"twitter":455,"facebook":456,"youtube":457,"linkedin":458},"https://x.com/gitlab","https://www.facebook.com/gitlab","https://www.youtube.com/channel/UCnMGQ8QHMAnVIsI3xJrihhg","https://www.linkedin.com/company/gitlab-com",[460,483,538,565,599],{"title":45,"links":461,"subMenu":466},[462],{"text":463,"config":464},"DevSecOps-Plattform",{"href":54,"dataGaName":465,"dataGaLocation":443},"devsecops platform",[467],{"title":168,"links":468},[469,473,478],{"text":470,"config":471},"Tarife anzeigen",{"href":170,"dataGaName":472,"dataGaLocation":443},"view plans",{"text":474,"config":475},"Vorteile von Premium",{"href":476,"dataGaName":477,"dataGaLocation":443},"/de-de/pricing/premium/","why premium",{"text":479,"config":480},"Vorteile von Ultimate",{"href":481,"dataGaName":482,"dataGaLocation":443},"/de-de/pricing/ultimate/","why ultimate",{"title":484,"links":485},"Lösungen",[486,491,494,496,501,506,510,513,516,521,523,525,528,533],{"text":487,"config":488},"Digitale Transformation",{"href":489,"dataGaName":490,"dataGaLocation":443},"/de-de/topics/digital-transformation/","digital transformation",{"text":492,"config":493},"Sicherheit und Compliance",{"href":110,"dataGaName":117,"dataGaLocation":443},{"text":102,"config":495},{"href":86,"dataGaName":87,"dataGaLocation":443},{"text":497,"config":498},"Agile Entwicklung",{"href":499,"dataGaName":500,"dataGaLocation":443},"/de-de/solutions/agile-delivery/","agile delivery",{"text":502,"config":503},"Cloud-Transformation",{"href":504,"dataGaName":505,"dataGaLocation":443},"/de-de/topics/cloud-native/","cloud transformation",{"text":507,"config":508},"SCM",{"href":99,"dataGaName":509,"dataGaLocation":443},"source code management",{"text":90,"config":511},{"href":92,"dataGaName":512,"dataGaLocation":443},"continuous integration & delivery",{"text":140,"config":514},{"href":142,"dataGaName":515,"dataGaLocation":443},"value stream management",{"text":517,"config":518},"GitOps",{"href":519,"dataGaName":520,"dataGaLocation":443},"/de-de/solutions/gitops/","gitops",{"text":153,"config":522},{"href":155,"dataGaName":156,"dataGaLocation":443},{"text":158,"config":524},{"href":160,"dataGaName":161,"dataGaLocation":443},{"text":526,"config":527},"Öffentlicher Sektor",{"href":165,"dataGaName":166,"dataGaLocation":443},{"text":529,"config":530},"Bildungswesen",{"href":531,"dataGaName":532,"dataGaLocation":443},"/de-de/solutions/education/","education",{"text":534,"config":535},"Finanzdienstleistungen",{"href":536,"dataGaName":537,"dataGaLocation":443},"/de-de/solutions/finance/","financial services",{"title":173,"links":539},[540,542,544,546,549,551,553,555,557,559,561,563],{"text":185,"config":541},{"href":187,"dataGaName":188,"dataGaLocation":443},{"text":190,"config":543},{"href":192,"dataGaName":193,"dataGaLocation":443},{"text":195,"config":545},{"href":197,"dataGaName":198,"dataGaLocation":443},{"text":200,"config":547},{"href":202,"dataGaName":548,"dataGaLocation":443},"docs",{"text":223,"config":550},{"href":225,"dataGaName":226,"dataGaLocation":443},{"text":218,"config":552},{"href":220,"dataGaName":221,"dataGaLocation":443},{"text":228,"config":554},{"href":230,"dataGaName":231,"dataGaLocation":443},{"text":236,"config":556},{"href":238,"dataGaName":239,"dataGaLocation":443},{"text":241,"config":558},{"href":243,"dataGaName":244,"dataGaLocation":443},{"text":246,"config":560},{"href":248,"dataGaName":249,"dataGaLocation":443},{"text":251,"config":562},{"href":253,"dataGaName":254,"dataGaLocation":443},{"text":256,"config":564},{"href":258,"dataGaName":259,"dataGaLocation":443},{"title":274,"links":566},[567,569,571,573,575,577,579,583,588,590,592,594],{"text":281,"config":568},{"href":283,"dataGaName":276,"dataGaLocation":443},{"text":286,"config":570},{"href":288,"dataGaName":289,"dataGaLocation":443},{"text":294,"config":572},{"href":296,"dataGaName":297,"dataGaLocation":443},{"text":299,"config":574},{"href":301,"dataGaName":302,"dataGaLocation":443},{"text":304,"config":576},{"href":306,"dataGaName":307,"dataGaLocation":443},{"text":309,"config":578},{"href":311,"dataGaName":312,"dataGaLocation":443},{"text":580,"config":581},"Sustainability",{"href":582,"dataGaName":580,"dataGaLocation":443},"/sustainability/",{"text":584,"config":585},"Vielfalt, Inklusion und Zugehörigkeit",{"href":586,"dataGaName":587,"dataGaLocation":443},"/de-de/diversity-inclusion-belonging/","Diversity, inclusion and belonging",{"text":314,"config":589},{"href":316,"dataGaName":317,"dataGaLocation":443},{"text":324,"config":591},{"href":326,"dataGaName":327,"dataGaLocation":443},{"text":329,"config":593},{"href":331,"dataGaName":332,"dataGaLocation":443},{"text":595,"config":596},"Transparenzerklärung zu moderner Sklaverei",{"href":597,"dataGaName":598,"dataGaLocation":443},"https://handbook.gitlab.com/handbook/legal/modern-slavery-act-transparency-statement/","modern slavery transparency statement",{"title":600,"links":601},"Nimm Kontakt auf",[602,605,610,612,617,622,627],{"text":603,"config":604},"Sprich mit einem Experten/einer Expertin",{"href":36,"dataGaName":37,"dataGaLocation":443},{"text":606,"config":607},"Support",{"href":608,"dataGaName":609,"dataGaLocation":443},"/support/","get help",{"text":348,"config":611},{"href":350,"dataGaName":351,"dataGaLocation":443},{"text":613,"config":614},"Status",{"href":615,"dataGaName":616,"dataGaLocation":443},"https://status.gitlab.com/","status",{"text":618,"config":619},"Nutzungsbedingungen",{"href":620,"dataGaName":621,"dataGaLocation":443},"/terms/","terms of use",{"text":623,"config":624},"Datenschutzerklärung",{"href":625,"dataGaName":626,"dataGaLocation":443},"/de-de/privacy/","privacy statement",{"text":628,"config":629},"Cookie-Einstellungen",{"dataGaName":630,"dataGaLocation":443,"id":631,"isOneTrustButton":15},"cookie preferences","ot-sdk-btn",{"items":633},[634,636,638],{"text":618,"config":635},{"href":620,"dataGaName":621,"dataGaLocation":443},{"text":623,"config":637},{"href":625,"dataGaName":626,"dataGaLocation":443},{"text":628,"config":639},{"dataGaName":630,"dataGaLocation":443,"id":631,"isOneTrustButton":15},68,{"id":642,"title":643,"authorSlugs":644,"body":6,"categorySlug":9,"config":646,"content":649,"description":6,"extension":13,"isFeatured":15,"meta":660,"navigation":15,"path":661,"publishedDate":655,"seo":662,"stem":665,"tagSlugs":666,"__hash__":668},"blogPosts/de-de/blog/ai-can-detect-vulnerabilities-but-who-governs-risk.yml","Ai Can Detect Vulnerabilities But Who Governs Risk",[645],"omer-azaria",{"featured":15,"template":647,"slug":648},"BlogPost","ai-can-detect-vulnerabilities-but-who-governs-risk",{"title":650,"description":651,"heroImage":652,"authors":653,"date":655,"body":656,"category":9,"tags":657},"KI erkennt Schwachstellen – aber wer verantwortet das Risiko?","KI-gestützte Schwachstellenerkennung entwickelt sich schnell, doch Durchsetzung, Governance und Supply-Chain-Sicherheit erfordern eine integrierte Plattform.","https://res.cloudinary.com/about-gitlab-com/image/upload/v1772195014/ooezwusxjl1f7ijfmbvj.png",[654],"Omer Azaria","2026-02-27","Anthropic hat kürzlich Claude Code Security angekündigt – ein KI-System, das Schwachstellen erkennt und Korrekturen vorschlägt. Die Reaktion der Märkte folgte prompt: Die Aktien von Cybersecurity-Unternehmen gaben nach, als Investoren begannen, die Zukunft klassischer AppSec-Tools in Frage zu stellen. Die Frage, die viele beschäftigt: Wenn KI Code schreiben und absichern kann, wird Anwendungssicherheit dann überflüssig?\n\nWenn Sicherheit nur das Scannen von Code bedeutete, wäre die Antwort vielleicht ja. Aber Enterprise-Sicherheit war noch nie auf Erkennung allein ausgerichtet.\n\nUnternehmen fragen nicht, ob KI Schwachstellen finden kann. Sie stellen drei weitaus schwieriger zu beantwortende Fragen:\n\n* Ist das, was wir ausliefern wollen, sicher?\n* Hat sich unsere Risikolage verändert, während sich Umgebungen, Abhängigkeiten, Drittanbieter-Services, Tools und Infrastruktur kontinuierlich wandeln?\n* Wie lässt sich eine Codebasis steuern, die zunehmend von KI und Drittquellen zusammengestellt wird – für die wir aber weiterhin verantwortlich sind?\n\nDiese Fragen erfordern eine Plattformantwort: Erkennung macht Risiken sichtbar, aber Governance bestimmt, was als nächstes passiert.\n\n[GitLab](https://about.gitlab.com/de-de/) ist die Orchestrierungsschicht, die den Software-Lebenszyklus durchgängig steuert und Teams die Durchsetzung, Transparenz und Nachvollziehbarkeit gibt, die sie brauchen, um mit der Geschwindigkeit KI-gestützter Entwicklung Schritt zu halten.\n\n## KI vertrauen erfordert Governance\n\nKI-Systeme werden zunehmend besser darin, Schwachstellen zu identifizieren und Korrekturen vorzuschlagen. Das ist ein bedeutender Fortschritt – aber Analyse ist keine Verantwortung.\n\nKI kann Unternehmensrichtlinien nicht eigenständig durchsetzen oder akzeptables Risiko definieren. Menschen müssen die Grenzen, Richtlinien und Leitplanken festlegen, innerhalb derer Agenten operieren: Funktionstrennung sicherstellen, Audit-Trails gewährleisten und konsistente Kontrollen über Tausende von Repositories und Teams hinweg aufrechterhalten. Vertrauen in Agenten entsteht nicht durch Autonomie allein, sondern durch klar definierte Governance durch Menschen.\n\nIn einer [agentischen Welt](https://about.gitlab.com/de-de/topics/agentic-ai/), in der Software zunehmend von autonomen Systemen geschrieben und verändert wird, wird Governance wichtiger, nicht unwichtiger. Je mehr Autonomie Unternehmen KI gewähren, desto stärker muss die Governance sein.\n\nGovernance ist keine Bremse. Sie ist das Fundament, das KI-gestützte Entwicklung im Unternehmensmaßstab vertrauenswürdig macht.\n\n## LLMs sehen Code, Plattformen sehen Kontext\n\nEin Large Language Model ([LLM](https://about.gitlab.com/de-de/blog/what-is-a-large-language-model-llm/)) bewertet Code isoliert. Eine Enterprise Application Security-Plattform versteht Kontext. Dieser Unterschied ist entscheidend, weil Risikoentscheidungen kontextabhängig sind:\n\n* Wer hat die Änderung vorgenommen?\n* Wie kritisch ist die Anwendung für das Unternehmen?\n* Wie interagiert sie mit Infrastruktur und Abhängigkeiten?\n* Liegt die Schwachstelle in Code, der tatsächlich in der Produktion erreichbar ist, oder in einer Abhängigkeit, die nie ausgeführt wird?\n* Ist sie in der Produktion tatsächlich ausnutzbar – angesichts der Art, wie die Anwendung läuft, ihrer APIs und der sie umgebenden Umgebung?\n\nSicherheitsentscheidungen hängen von diesem Kontext ab. Fehlt er, produziert Erkennung laute Alarme, die die Entwicklung verlangsamen, anstatt Risiken zu reduzieren. Mit ihm können Unternehmen schnell priorisieren und Risiken gezielt managen. Da sich Kontext mit jeder Softwareänderung weiterentwickelt, kann Governance keine einmalige Entscheidung sein.\n\n## Statische Scans halten mit dynamischem Risiko nicht Schritt\n\nSoftware-Risiko ist dynamisch. Abhängigkeiten ändern sich, Umgebungen entwickeln sich, und Systeme interagieren auf Weisen, die keine einzelne Analyse vollständig vorhersehen kann. Ein sauberer Scan zu einem Zeitpunkt garantiert keine Sicherheit beim Release.\n\nEnterprise-Sicherheit setzt auf kontinuierliche Absicherung: Kontrollen, die direkt in Entwicklungs-Workflows eingebettet sind und Risiken bewerten, während Software entwickelt, getestet und bereitgestellt wird.\n\nErkennung liefert Erkenntnisse. Governance schafft Vertrauen. Kontinuierliche Governance ermöglicht es Unternehmen, im Unternehmensmaßstab sicher auszuliefern.\n\n## Die agentische Zukunft steuern\n\nKI verändert, wie Software entsteht. Die Frage lautet nicht mehr, ob Teams KI einsetzen werden, sondern wie sicher sie dabei skalieren können.\n\nSoftware wird heute ebenso zusammengestellt wie geschrieben – aus KI-generiertem Code, Open-Source-Bibliotheken und Drittanbieter-Abhängigkeiten, die sich über Tausende von Projekten erstrecken. Zu steuern, was über all diese Quellen hinweg ausgeliefert wird, ist der anspruchsvollste Teil der Anwendungssicherheit – und jener, für den kein entwicklerseitiges Tool ausgelegt ist.\n\nAls intelligente Orchestrierungsplattform ist GitLab darauf ausgerichtet, dieses Problem zu lösen. GitLab Ultimate bettet Governance, Richtliniendurchsetzung, Security Scanning und Nachvollziehbarkeit direkt in die Workflows ein, in denen Software geplant, entwickelt und ausgeliefert wird – damit Security-Teams im Tempo von KI steuern können.\n\nKI wird die Entwicklung erheblich beschleunigen. Den größten Nutzen werden nicht die Unternehmen ziehen, die die leistungsfähigsten KI-Assistenten einsetzen, sondern jene, die Vertrauen durch starke Governance aufbauen.\n\n> Wie GitLab Unternehmen dabei hilft, [KI-generierten Code zu steuern und sicher auszuliefern](https://about.gitlab.com/solutions/software-compliance/?utm_medium=blog&utm_campaign=eg_global_x_x_security_en_): [Jetzt mit unserem Team sprechen.](https://about.gitlab.com/sales/?utm_medium=blog&utm_campaign=eg_global_x_x_security_en_)\n\n## Weiterführende Beiträge\n- [KI und DevOps für verbesserte Sicherheit integrieren](https://about.gitlab.com/de-de/topics/devops/ai-enhanced-security/)\n\n- [Das GitLab KI-Sicherheits-Framework für Security-Verantwortliche](https://about.gitlab.com/de-de/blog/the-gitlab-ai-security-framework-for-security-leaders/)\n\n- [KI-Sicherheit in GitLab mit Composite Identities verbessern](https://about.gitlab.com/de-de/blog/improve-ai-security-in-gitlab-with-composite-identities/)\n\n---\n\n## Für deutsche Unternehmen: Governance als regulatorische Anforderung\n\nDie in diesem Beitrag beschriebenen Governance-Prinzipien adressieren Anforderungen, die regulierte Unternehmen in Deutschland unmittelbar betreffen könnten.\n\nDie NIS-2-Richtlinie (umgesetzt durch das NIS2UmsuCG) verpflichtet betroffene Unternehmen zu Maßnahmen im Bereich Risikoanalyse und Informationssicherheit (Artikel 21 Abs. 2 lit. a), Incident-Handling (Artikel 21 Abs. 2 lit. b) sowie zur Sicherheit in der Software-Lieferkette (Artikel 21 Abs. 2 lit. d) und bei der sicheren Entwicklung (Artikel 21 Abs. 2 lit. e). Die hier beschriebene Unterscheidung zwischen Erkennung und Governance spiegelt genau diese regulatorische Logik wider: Schwachstellen zu finden reicht nicht – entscheidend ist, wer die Reaktion darauf steuert, dokumentiert und verantwortet.\n\nISO 27001 adressiert ähnliche Anforderungen: Zugriffskontrolle (A.5.15–18), Logging und Monitoring (A.8.15–16), Schwachstellenmanagement (A.8.8) sowie Änderungsmanagement (A.8.32) setzen voraus, dass Governance-Prozesse in Entwicklungs-Workflows eingebettet sind – nicht nachgelagert.\n\nFür Unternehmen in regulierten Branchen wie Finanzdienstleistungen (BaFin BAIT §6–7), Automotive (TISAX) oder kritischer Infrastruktur (BSI KRITIS) könnten diese Anforderungen besonders relevant sein. Für konkrete Compliance-Anforderungen empfiehlt sich Rücksprache mit entsprechender Fachberatung.",[658,659],"AI/ML","security",{},"/de-de/blog/ai-can-detect-vulnerabilities-but-who-governs-risk",{"config":663,"title":664,"description":651},{"noIndex":10},"KI erkennt Schwachstellen, aber wer verantwortet das Risiko?","de-de/blog/ai-can-detect-vulnerabilities-but-who-governs-risk",[667,659],"aiml","oi5g-iagQ5ePeezypbrk3Rz5nc_cr52HqOxs1pUEQfo",[670,679,688,697,706,715,723,732,740],{"content":671,"config":677},{"title":672,"heroImage":673,"category":9,"description":674,"authors":675},"Model Context Protocol Integration","https://res.cloudinary.com/about-gitlab-com/image/upload/v1765809212/noh0mdfn9o94ry9ykura.png","Erweitere GitLab Duo mit externen Services über MCP. Verbinde dich als MCP-Client mit Jira, Slack, AWS und mehr, oder ermögliche externen KI-Tools den Zugriff auf deine GitLab-Daten als MCP-Server.",[676],"Itzik Gan Baruch",{"externalUrl":-1,"slug":678},"duo-agent-platform-with-mcp",{"content":680,"config":686},{"title":681,"heroImage":682,"category":9,"description":683,"authors":684},"GitLab 18.4: KI-native Entwicklung, voll automatisiert und transparent","https://res.cloudinary.com/about-gitlab-com/image/upload/v1758541195/kig7sww6jyvxzmkmimbv.png","Mit GitLab 18.4 erstellst du eigene Agents, nutzt Knowledge Graph-Kontext und reparierst Pipelines automatisch – damit Entwickler(innen) immer im Flow bleiben!",[685],"Bill Staples",{"externalUrl":-1,"slug":687},"gitlab-18-4-ai-native-development-with-automation-and-insight",{"content":689,"config":695},{"title":690,"heroImage":691,"category":9,"description":692,"authors":693},"Wie du mit der GitLab Duo Agent Platform deine DataOps transformiert","blog/hero%20images/workflow_1800x945.png","So wird aus manueller Programmierung eine vollautomatische Generierung, erklärt am Beispiel der dbt-Modellerstellung.",[694],"Dennis van Rooijen",{"externalUrl":-1,"slug":696},"how-gitlab-duo-agent-platform-transforms-dataops",{"content":698,"config":704},{"title":699,"heroImage":700,"category":9,"description":701,"authors":702},"Vibe Coding mit GitLab Duo Agent Platform: Issue to MR","https://res.cloudinary.com/about-gitlab-com/image/upload/f_auto,q_auto,c_lfill/v1749662465/Blog/Hero%20Images/GitLab_Duo_Workflow_Unified_Data_Store__1_.png","So aktualisierst du deine Anwendung mit unserem neuesten Flow in wenigen Minuten. ",[703],"Cesar Saavedra",{"externalUrl":-1,"slug":705},"vibe-coding-with-gitlab-duo-agent-platform-issue-to-mr-flow",{"content":707,"config":713},{"title":708,"heroImage":709,"category":9,"description":710,"authors":711},"Warum Unabhängigkeit in DevSecOps wichtiger ist denn je","https://res.cloudinary.com/about-gitlab-com/image/upload/v1756500636/wmey6kqzzuhirk88w2de.png","Unternehmen hinterfragen, wer ihre Entwicklungsinfrastruktur wirklich kontrolliert. Deshalb gilt: GitLabs Unabhängigkeit ist relevanter denn je.\n",[712],"Robin Schulman",{"externalUrl":-1,"slug":714},"why-enterprise-independence-matters-more-than-ever-in-devsecops",{"content":716,"config":721},{"title":717,"heroImage":718,"category":9,"description":719,"authors":720},"GitLab 18.3: KI-Orchestrierung revolutioniert die Softwareentwicklung","https://res.cloudinary.com/about-gitlab-com/image/upload/v1755711502/wuuadis1pza3zehqohcc.png","So transformierst du das Zusammenspiel von Mensch und KI durch verbesserte Flows, Enterprise Governance und nahtlose Tool-Integration.",[685],{"externalUrl":-1,"slug":722},"gitlab-13-expanding-ai-orchestration-in-software-engineering",{"content":724,"config":730},{"title":725,"heroImage":726,"category":9,"description":727,"authors":728},"AI-ROI skaliert messen: Ein praktischer Leitfaden zu GitLab Duo Analytics","https://res.cloudinary.com/about-gitlab-com/image/upload/v1749662840/Blog/Hero%20Images/ai-experiment-stars.png","So werden Rohdaten in fundierte Geschäftsentscheidungen und ROI-Berechnungen transformiert – mit diesem strategischen Leitfaden.",[729],"Paul Meresanu",{"externalUrl":-1,"slug":731},"measuring-ai-roi-at-scale-a-practical-guide-to-gitlab-duo-analytics",{"content":733,"config":738},{"title":734,"heroImage":735,"category":9,"description":736,"authors":737},"GitLab Duo Agent Platform jetzt in Public Beta: KI-Orchestrierung der nächsten Generation","https://res.cloudinary.com/about-gitlab-com/image/upload/v1752678395/impw8no5tbskr6k2afgu.jpg","Entwicklerteams und KI-Agenten arbeiten erstmals Hand in Hand – parallel, intelligent, orchestriert.",[685],{"externalUrl":-1,"slug":739},"gitlab-duo-agent-platform-public-beta",{"content":741,"config":747},{"title":742,"heroImage":743,"category":9,"description":744,"authors":745},"3 Best Practices für die Softwareentwicklung im Zeitalter von LLMs","https://res.cloudinary.com/about-gitlab-com/image/upload/v1749662523/Blog/Hero%20Images/Gartner_DevOps_Blog_Post_Cover_Image_1800x945__2_.png","Da KI die Entwicklungsgeschwindigkeit transformiert, brauchen Entwickler(innen) neue Sicherheitsgewohnheiten. Erfahre, welche das sind und wie sie im DevSecOps-Workflow eingesetzt werden.",[746],"Salman Ladha",{"externalUrl":-1,"slug":748},"3-best-practices-for-building-software-in-the-era-of-llms",1772652119081]