• Home
  • Black Duck vs. GitLab

Black Duck vs GitLab comparison

Cancel
You must select at least 2 products to compare!
Synopsys Logo
Black Duck
Read 19 Black Duck reviews
14,718 views|10,174 comparisons
82% willing to recommend
GitLab Logo
GitLab
Read 70 GitLab reviews
2,964 views|2,395 comparisons
98% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Black Duck vs. GitLab
May 2024
Executive Summary

We performed a comparison between Black Duck and GitLab based on real PeerSpot user reviews.

Find out in this report how the two Software Composition Analysis (SCA) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed Black Duck vs. GitLab Report (Updated: May 2024).
Download the complete report
772,649 professionals have used our research since 2012.
Featured Review
Sagar Mody
Effectively flags operational vulnerabilities and recommendations for fixes are very helpful
We didn't have a central inventory to quickly identify issues or determine how many products were affected. Now under Black Duck, it's all... Read more →
Anonymous User
Efficiently streamlines and automates tasks
By streamlining tasks that we used to do on a daily basis and scheduling them.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The installation is very easy.""The most valuable feature is the vulnerability scanning, and that it's easy to use.""The solution is very good at scanning and evaluating open source software.""Policy management is a valuable feature.""The stability is okay.""The product enables other applications to be secure.""We didn't have a central inventory to quickly identify issues or determine how many products were affected. Now under Black Duck, it's all consolidated. You search for a component and immediately see which products use it.""The most valuable feature of Black Duck is the seamless integration to scan our Docker binary files, it provides us all open vulnerabilities, and it ensures a reference point from where it finds the vulnerability is up to date. For example, if there is any new vulnerability found, they are immediately available in the Black Duck. There is no delay in finding the vulnerabilities, they are called out in our code immediately."

More Black Duck Pros →

"This product is always evolving, and they listen to the customers.""GitLab is very useful for pipelines, continuous integration, and continuous deployment. It is also stable.""It is very flexible and easy because you can store data on cloud.""Of all available products, it was the easiest to use and easy to install.""GitLab's best features are maintenance, branch integration, and development infrastructure.""Key features allow creation of well-presented Wiki that includes ideas, development, and domains.""I have found the most valuable features of GitLab are the GitClone, GitPush, GitPull, GitMatch, GitMit, GitCommit, and GitStatus.""The solution's most valuable feature is that it is compatible with GitHub. The product's integration capabilities are sufficient for our small company of 35 people."

More GitLab Pros →

Cons
"The tool needs to improve its pricing. Its configuration is complex and can be improved.""I would like to see more integration with other solutions, such as IntelliJ IDEA.""The tool's documentation and support are areas of concern where improvements are required.""The documentation is quite scattered.""They are giving a lot of APIs and Python scripts for certain functionalities, but instead of using APIs and Python scripts, they should provide these functionalities through the UI. Users should be able to customize and add more fields through the UI. Users should be able to add more fields and generate reports. Currently, they are not giving flexibility in the UI. They're providing a script that simply generates an Excel file or CSV file. There is no flexibility.""The solution's pricing model and documentation areas of concern where improvement is needed.""Black Duck can improve the time it takes for a scan. Most of the time it's not ideal when integrated with the live DevSecOps pipeline. We have to create a separate job to scan the library because it takes a couple of hours to scan all those libraries. The scanning could be faster.""It's still a bit inconsistent. For example, if I scan today, it might not show the same results tomorrow."

More Black Duck Cons →

"The documentation is confusing.""The solution should be more cloud-native and have more cloud-native capabilities and features.""It should be used by a larger number of people. They should raise awareness.""We'd always like to see better pricing on the product.""I would like to see security increased in the future. A secure environment is very important.""Atlassian offers more products than GitLab. GitLab offers source control management, version control and collaboration between developers. Atlassian offers features on top of this as well as more integration points for developers.""I don't really like the new Kubernetes integration because it is pretty focused on the on-premise environment, but we're in a hybrid environment.""The integration and storage capabilities could be better."

More GitLab Cons →

Pricing and Cost Advice
  • "Depending on the use case, the cost could range from $10,000 USD to $70,000 USD."
  • "The price is quite high because the behavior of the software during the scan is similar to competing products."
  • "The price is low. It's not an expensive solution."
  • "Black Duck is more suitable if you require a lot of licensing compliance. For smaller organizations, WhiteSource is better because its pricing policies are not really suitable for huge organizations."
  • "It is expensive."
  • "I rate the product's price one on a scale of one to ten, where one is a high price, and ten is a low price."
  • "The pricing is a little high."
  • "The price charged by Black Duck is exorbitant."

    • More Black Duck Pricing and Cost Advice →

  • "I think that we pay approximately $100 USD per month."
  • "The price is okay."
  • "It seems reasonable. Our IT team manages the licenses."
  • "Its price is fine. It is on the cheaper side and not expensive. You have to pay additionally for GitLab CI/CD minutes. Initially, we used the free version. When we ran out of GitLab minutes, we migrated to the paid version."
  • "It is very expensive. We can't bear it now, and we have to find another solution. We have a yearly subscription in which we can increase the number of licenses, but we have to pay at the end of the year."
  • "I don't mind the price because I use the free version."
  • "We are using its free version, and we are evaluating its Premium version. Its Ultimate version is very expensive."
  • "The price of GitLab could be better, it is expensive."

    • More GitLab Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Software Composition Analysis (SCA) solutions are best for your needs.
    See Recommendations
    772,649 professionals have used our research since 2012.
    Questions from the Community
    How does WhiteSource compare with Black Duck?
    Top Answer:We researched Black Duck but ultimately chose WhiteSource when looking for an application security tool. WhiteSource is a software solution that enables agile open source security and license… more »
    What do you like most about Black Duck?
    Top Answer:The cloud option of the product is always available and a positive aspect of the solution.
    Read all 18 answers   →
    What is your experience regarding pricing and costs for Black Duck?
    Top Answer:The price charged by Black Duck is exorbitant. For the features provided by the product, I would not want to pay a high price. There are many other products in the market that offer better features… more »
    Read all 15 answers   →
    What do you like most about GitLab?
    Top Answer:I find the features and version control history to be most valuable for our development workflow. These aspects provide us with a clear view of changes and help us manage requests efficiently.
    Read all 43 answers   →
    What is your experience regarding pricing and costs for GitLab?
    Top Answer:For small-scale usage, GitLab offers a free tier. For enterprise pricing, GitLab is more expensive than GitHub, as it's not as widely adopted. GitLab is the preferred choice for many developers… more »
    Read all 31 answers   →
    What needs improvement with GitLab?
    Top Answer:I believe there's room for improvement in the advanced features, particularly in enhancing the pipeline functionalities. Better integration and usability within the pipeline could make a significant… more »
    Read all 43 answers   →
    Ranking
    1st
    out of 40 in Software Composition Analysis (SCA)
    Views
    14,718
    Comparisons
    10,174
    Reviews
    8
    Average Words per Review
    455
    Rating
    7.6
    6th
    out of 40 in Software Composition Analysis (SCA)
    Views
    2,964
    Comparisons
    2,395
    Reviews
    50
    Average Words per Review
    406
    Rating
    8.6
    Comparisons
    Snyk logo
    Snyk vs. Black Duck
    Compared 23% of the time.
    JFrog Xray logo
    JFrog Xray vs. Black Duck
    Compared 12% of the time.
    Mend.io logo
    Mend.io vs. Black Duck
    Compared 9% of the time.
    Semgrep Supply Chain logo
    Semgrep Supply Chain vs. Black Duck
    Compared 1% of the time.
    More Black Duck Competitors   →
    Microsoft Azure DevOps logo
    Microsoft Azure DevOps vs. GitLab
    Compared 50% of the time.
    SonarQube logo
    SonarQube vs. GitLab
    Compared 5% of the time.
    Bamboo logo
    Bamboo vs. GitLab
    Compared 5% of the time.
    AWS CodePipeline logo
    AWS CodePipeline vs. GitLab
    Compared 5% of the time.
    UrbanCode Deploy logo
    UrbanCode Deploy vs. GitLab
    Compared 1% of the time.
    More GitLab Competitors   →
    Also Known As
    Blackduck Hub, Black Duck Protex, Black Duck Security Checker
    Fuzzit
    Learn More
    Synopsys
    GitLab
    Overview

    Black Duck is a comprehensive solution for managing security, license compliance, and code quality risks that come from the use of open source in applications and containers. Named a leader in software composition analysis (SCA) by Forrester, Black Duck gives you unmatched visibility into third-party code, enabling you to control it across your software supply chain and throughout the application life cycle.

    GitLab is a complete DevOps platform that enables teams to collaborate and deliver software faster. 

    It provides a single application for the entire DevOps lifecycle, from planning and development to testing, deployment, and monitoring. 

    With GitLab, teams can streamline their workflows, automate processes, and improve productivity.

    Sample Customers
    Samsung, Siemens, ScienceLogic, Noser Engineering AG, ClickFox, Dynatrace, CopperLeaf
    1. NASA  2. IBM  3. Sony  4. Alibaba  5. CERN  6. Siemens  7. Volkswagen  8. ING  9. Ticketmaster  10. SpaceX  11. Adobe  12. Intuit  13. Autodesk  14. Rakuten  15. Unity Technologies  16. Pandora  17. Electronic Arts  18. Nordstrom  19. Verizon  20. Comcast  21. Philips  22. Deutsche Telekom  23. Orange  24. Fujitsu  25. Ericsson  26. Nokia  27. General Electric  28. Cisco  29. Accenture  30. Deloitte  31. PwC  32. KPMG
    Top Industries
    REVIEWERS
    Manufacturing Company67%
    Computer Software Company17%
    Financial Services Firm17%
    VISITORS READING REVIEWS
    Financial Services Firm21%
    Manufacturing Company15%
    Computer Software Company15%
    Healthcare Company4%
    REVIEWERS
    Financial Services Firm16%
    Computer Software Company16%
    Manufacturing Company13%
    Retailer10%
    VISITORS READING REVIEWS
    Educational Organization25%
    Computer Software Company12%
    Financial Services Firm11%
    Manufacturing Company8%
    Company Size
    REVIEWERS
    Small Business32%
    Large Enterprise68%
    VISITORS READING REVIEWS
    Small Business15%
    Midsize Enterprise10%
    Large Enterprise75%
    REVIEWERS
    Small Business44%
    Midsize Enterprise9%
    Large Enterprise47%
    VISITORS READING REVIEWS
    Small Business15%
    Midsize Enterprise34%
    Large Enterprise51%
    Buyer's Guide
    Black Duck vs. GitLab
    May 2024
    Free Report: Black Duck vs. GitLab
    Find out what your peers are saying about Black Duck vs. GitLab and other solutions. Updated: May 2024.
    DOWNLOAD NOW
    772,649 professionals have used our research since 2012.

    Black Duck is ranked 1st in Software Composition Analysis (SCA) with 19 reviews while GitLab is ranked 6th in Software Composition Analysis (SCA) with 70 reviews. Black Duck is rated 7.8, while GitLab is rated 8.6. The top reviewer of Black Duck writes "Enables applications to be secure, but it must provide more open APIs". On the other hand, the top reviewer of GitLab writes "Powerful, mature, and easy to set up and manage". Black Duck is most compared with Snyk, Fortify Static Code Analyzer, JFrog Xray, Mend.io and Semgrep Supply Chain, whereas GitLab is most compared with Microsoft Azure DevOps, SonarQube, Bamboo, AWS CodePipeline and UrbanCode Deploy. See our Black Duck vs. GitLab report.

    See our list of best Software Composition Analysis (SCA) vendors.

    We monitor all Software Composition Analysis (SCA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.