We performed a comparison between Kiuwan and Mend.io based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Software analytics for a lot of different languages including ABAP."
"The most valuable feature of the solution stems from the fact that it is quick when processing and giving an output or generating a report."
"The feature that I have found the most valuable in Kiuwan is the speed of scanning. Compared to other SaaS tools I have used, Kiuwan is much quicker in performing scans. I have not yet used it on a large code base, but from what I have experienced, it is efficient and accurate. Additionally, I have used it both manually and in an automated pipeline, and both methods have been effective. The speed of scanning is what makes it valuable to me."
"I like that I can scan the code without sending it to the Kiuwan cloud. I can do it locally on my device. When the local analyzer finishes, the results display on the dashboard in the cloud. It's essential for security purposes to be able to scan my code locally."
"We use Kiuwan to locate the source of application vulnerabilities."
"I've found the reporting features the most helpful."
"We are using this solution to increase the quality of our software and to test the vulnerabilities in our tools before the customers find them."
"The most valuable feature is the time to resolution, where it tells you how long it is going to take to get to a zero-base or a five-star security rating."
"The solution boasts a broad range of features and covers much of what an ideal SCA tool should."
"The most valuable features are the reporting, customizing libraries "In-house, White list, license selection", comparing the products/projects, and License & Copyright resolution."
"The inventory management as well as the ability to identify security vulnerabilities has been the most valuable for our business."
"Its ease of use and good results are the most valuable."
"The most valuable feature is the unified JAR to scan for all langs (wss-scanner jar)."
"The most valuable feature is the inventory, where it compiles a list of all of the third-party libraries that we have on our estate."
"Mend has reduced our open-source software vulnerabilities and helped us remediate issues quickly. My company's policy is to ensure that vulnerabilities are fixed before it gets to production."
"We use a lot of open sources with a variety of containers, and the different open sources come with different licenses. Some come with dual licenses, some are risky and some are not. All our three use cases are equally important to us and we found WhiteSource handles them decently."
"The solution seems to give us a lot of false positives. This could be improved quite a bit."
"The next release should include more flexibility in the reporting."
"It could improve its scalability abilities."
"Perhaps more languages supported."
"The integration process could be improved. It'll also help if it could generate reports automatically. But I'm not sure about the effectiveness of the reports. This is because, in our last project, we still found some key issues that weren't captured by the Kiuwan report."
"It would be beneficial to streamline calls and transitions seamlessly for improved functionality."
"Kiuwan's support has room for improvement. You can only open a ticket is through email, and the support team is outside of our country. They should have a support number or chat."
"DIfferent languages, such Spanish, Portuguese, and so on."
"WhiteSource Prioritize should be expanded to cover more than Java and JavaScript."
"WhiteSource needs improvement in the scanning of the containers and images with distinguishing the layers."
"Make the product available in a very stable way for other web browsers."
"I rated the solution an eight out of ten because WhiteSource hasn't built in a couple of features that we would have loved to use and they say they're on their roadmap. I'm hoping that they'll be able to build and deliver in 2022."
"Needs better ACL and more role definitions. This product could be used by large organisations and it definitely needs a better role/action model."
"Mend lets you create custom policies. They're not too complicated to set up, but it would be helpful if they had some preconfigured policies to match what we have in Azure DevOps. That would save us a lot of time. It's tedious to configure the policies manually, and I lack the capacity to do it right now. Other products have preconfigured packs and templates, and Mend doesn't."
"I would like to see the static analysis included with the open-source version."
"The solution lacks the code snippet part."
Kiuwan is ranked 22nd in Application Security Tools with 23 reviews while Mend.io is ranked 5th in Application Security Tools with 29 reviews. Kiuwan is rated 8.6, while Mend.io is rated 8.4. The top reviewer of Kiuwan writes "Though a stable tool, the UI needs improvement". On the other hand, the top reviewer of Mend.io writes "Easy to use, great for finding vulnerabilities, and simple to set up". Kiuwan is most compared with SonarQube, Checkmarx One, Snyk and Veracode, whereas Mend.io is most compared with SonarQube, Black Duck, Snyk, Veracode and Checkmarx One. See our Kiuwan vs. Mend.io report.
See our list of best Application Security Tools vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.