"GitLab Security Policy Bot" has access to my repos

niclasheinz · November 6, 2025, 8:58am

Dear all

I recently noticed that the following bot named " GitLab Security Policy Bot" has access to some of my repositories (only a few are affected).

I can’t revoke the access to this bot. Has anyone else also this seen?

I can’t give a reproduction because I don’t know why this bot account has access to some of my repos.

My next step would be to create a proper support-ticket

Please add an x whether options apply, and add the version information.

Versions

GitLab (Web: /help or self-managed system information sudo gitlab-rake gitlab:env:info):

Check the FAQ for helpful documentation, issues/bugs/feature proposals, and troubleshooting tips.
Before opening a new topic, make sure to search for keywords in the forum search
Check the GitLab project for existing issues. If you encounter a bug, please create a bug report issue.
Review existing troubleshooting docs.

Thanks for taking the time to be thorough in your request, it really helps!

dnsmichi · November 7, 2025, 1:11am

If the project has an enforced security policy, this bot account ensures that. See the docs.

niclasheinz · November 7, 2025, 5:47am

Thanks for you’re fast reply. I overlooked this part of the documentation.

Topic		Replies	Views
GitLab admin has access to all repositories How to Use GitLab	0	392	April 8, 2017
Is it safe to give people direct access to a git repository hosted on gitlab How to Use GitLab	0	895	March 11, 2015
Login to the forum via GitLab How to Use GitLab	0	282	May 8, 2019
Weird access rights for "Authenticate via Gitlab.com" How to Use GitLab	1	366	May 27, 2020
Confusing permission request when authorizing forum.gitlab.com for "login with gitlab" General	0	839	July 25, 2019