GitLab 17.4 introduces GitLab Advanced SAST, a static application security testing scanner that detects vulnerabilities through cross-function and cross-file taint analysis. It can be used with GitLab Duo Vulnerability Explanation to reduce the mean time to remediation (MTTR). To enable GitLab Advanced SAST, you need a GitLab Ultimate subscription and to add specific configurations to your .gitlab-ci.yml file. Once enabled, the scanner will run on each code commit and populate a vulnerability report with the latest vulnerability data. You can manage vulnerabilities in production by triaging them, adding relevant details, and creating issues to track progress. The "Code flow" tab on the Vulnerability page provides deeper insights into the vulnerable code paths. GitLab Duo Vulnerability Explanation can summarize the vulnerability, explain how it can be exploited, and suggest remediations. You can use this information to create a new branch with the fix, test the remediated application, and validate the merge request before deployment.