We performed a comparison between GitLab and HCL AppScan based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."I like GitLab's security and SAS tools."
"The most valuable features of GitLab are the CI/CD pipeline and code management."
"The tool helps to integrate CI/CD pipeline deployments. It is very easy to learn. Its security model is good."
"We use the Git repository and tagging feature. We are a product-based company and use this solution to move to a forward or backward tag."
"It's a great toolbox where the CI/CD pipeline is the fundamental component, but there are so many other features that you can pull from, which makes it a very powerful tool. My current client is using AWS, and they can, of course, use AWS CodePipeline, but GitLab is much more mature than that, and it also gives you the freedom to decide to go to another platform or have a multi-cloud strategy and things like that. That freedom for me is also very valuable."
"The most valuable feature of GitLab is its convenience. I am able to trace back most of my changes up to a far distance in time and it helps me to analyze and see the older version of the code."
"GitLab integrates well with other platforms."
"The most valuable feature of GitLab is its security."
"There's extensive functionality with custom rules and a custom knowledge base."
"The reporting part is the most valuable feature."
"The security and the dashboard are the most valuable features."
"It comes with all of the templates that we need. For example, we are a company that is regulated by PCI. In order to be PCI compliant, we have a lot of checks and procedures to which we have to comply."
"AppScan is stable."
"The most valuable feature of HCL AppScan is its integration with the SDLC, particularly during the coding phase."
"I like the recording feature."
"The most valuable feature of HCL AppScan is scanning QR codes."
"This solution could be improved by adding modifications such as slack notifications."
"There is room for improvement in GitLab Agents."
"I would like to see better integration with project management tools such as Jira."
"I rate the support from GitLab a four out of five."
"Even if I say I want some improvement, they will say it is already planned in the first quarter, second quarter, or third quarter. That said, most everything is quite improved already, and they're improving even further still."
"When deploying the solution on cloud and the CI/CD pipeline, we have to define the steps and it becomes confusing."
"We'd always like to see better pricing on the product."
"The documentation could be improved to help newcomers better understand things like creating new branches."
"We have experienced challenges when trying to integrate this solution with other products. When you compare it with the other SecOps products, the quality of the output is too low. It is not a new-age product. It is very outdated."
"Scans become slow on large websites."
"Sometimes it doesn't work so well."
"We would like to see a check in the specific vulnerabilities in mobile applications or rooted devices, such as jailbreaking devices."
"It's a little bit basic when you talk about the Web Services. If AppScan improved its maturity on Web Services testing, that would be good."
"The solution's scalability can be a matter of concern because one license runs on one machine only."
"Improving usability could enhance the overall experience with AppScan. It would be beneficial to make the solution more user-friendly, ensuring that everyone can easily navigate and utilize its features."
"The solution needs to improve in some areas. The tool needs to add more languages. It also needs to improve its speed."
GitLab is ranked 7th in Application Security Tools with 70 reviews while HCL AppScan is ranked 15th in Application Security Tools with 41 reviews. GitLab is rated 8.6, while HCL AppScan is rated 7.8. The top reviewer of GitLab writes "Powerful, mature, and easy to set up and manage". On the other hand, the top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". GitLab is most compared with Microsoft Azure DevOps, SonarQube, Bamboo, AWS CodePipeline and Tekton, whereas HCL AppScan is most compared with SonarQube, Veracode, Acunetix, PortSwigger Burp Suite Professional and OWASP Zap. See our GitLab vs. HCL AppScan report.
See our list of best Application Security Tools vendors and best Static Application Security Testing (SAST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.