We performed a comparison between GitLab and Snyk based on real PeerSpot user reviews.
Find out in this report how the two DevSecOps solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The scalability is good."
"CI/CD is valuable for me."
"Of all available products, it was the easiest to use and easy to install."
"Git hosting has an integration with ACD which is why we liked this solution in the first place."
"The solution has an established roadmap that lays out its plans for upgrades over the next two to three years."
"GitLab is being used as a repository for our codebase and it is a one stop DevOps tool we use in our team."
"This is a scalable solution. We had around 200 users working with it."
"This product is always evolving, and they listen to the customers."
"Snyk is a developer-friendly product."
"I find SCA to be valuable. It can read your libraries, your license and bring the best way to resolve your problem in the best scenario."
"The most valuable features include enriched information around the vulnerabilities for better triaging, in terms of the vulnerability layer origin and vulnerability tree."
"It has a nice dashboard where I can see all the vulnerabilities and risks that they provided. I can also see the category of any risk, such as medium, high, and low. They provide the input priority-wise. The team can target the highest one first, and then they can go to medium and low ones."
"The most valuable features of Snyk are vulnerability scanning and automation. The automation the solution brings around vulnerability scanning is useful."
"The solution has great features and is quite stable."
"The most effective feature in securing project dependencies stems from its ability to highlight security vulnerabilities."
"It is a stable solution. Stability-wise, I rate the solution a ten out of ten."
"We are having a few problems integrating with Jira at the moment, which is something that our IT department is investigating."
"I rate the support from GitLab a four out of five."
"GitLab could improve by having more plugins and better user-friendliness."
"GitLab doesn't have AWS integration. It would be better to have integration with other container management environments beyond Kubernetes. It has very good integration with Kubernetes, but it doesn't have good integration with, for example, AWS, ETS, etc."
"This solution could be improved by adding modifications such as slack notifications."
"It can be free for commercial use."
"There was a problem with the build environment when we were looking at developing iOS applications. iOS build require Mac machines and there are no Mac machines provided by GitLab in their cloud. So to build for mobile iOS application, we needed to use our own Mac machine within our own infrastructure. If GitLab were to provide a feature such that an iOS application could also be built through GitLab directly, that would be great."
"The solution does not have many built-in functions or variables so scripting is required."
"It can be improved from the reporting perspective and scanning perspective. They can also improve it on the UI front."
"The feature for automatic fixing of security breaches could be improved."
"They need to improve the Snyk plugins and make it easier to make your optimizations based on your own needs or features."
"Snyk's API and UI features could work better in terms of speed."
"We have seen cases where tools didn't find or recognize certain dependencies. These are known issues, to some extent, due to the complexity in the language or stack that you using. There are some certain circumstances where the tool isn't actually finding what it's supposed to be finding, then it could be misleading."
"Generating reports and visibility through reports are definitely things they can do better."
"Basically the licensing costs are a little bit expensive."
"We've also had technical issues with blocking newly introduced vulnerabilities in PRs and that was creating a lot of extra work for developers in trying to close and reopen the PR to get rid of some areas. We ended up having to disable that feature altogether because it wasn't really working for us and it was actually slowing down developer velocity."
GitLab is ranked 3rd in DevSecOps with 70 reviews while Snyk is ranked 1st in DevSecOps with 41 reviews. GitLab is rated 8.6, while Snyk is rated 8.2. The top reviewer of GitLab writes "Powerful, mature, and easy to set up and manage". On the other hand, the top reviewer of Snyk writes "Performs software composition analysis (SCA) similar to other expensive tools". GitLab is most compared with Microsoft Azure DevOps, Bamboo, SonarQube, AWS CodePipeline and Black Duck, whereas Snyk is most compared with SonarQube, Black Duck, GitHub Advanced Security, Fortify Static Code Analyzer and Fortify on Demand. See our GitLab vs. Snyk report.
See our list of best Software Composition Analysis (SCA) vendors, best DevSecOps vendors, and best Application Security Tools vendors.
We monitor all DevSecOps reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.