We performed a comparison between Checkmarx One and GitHub based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It shows in-depth code of where actual vulnerabilities are."
"Compared to the solutions we used previously, Checkmarx has reduced our workload by almost 75%."
"It allows for SAST scanning of uncompiled code. Further, it natively integrates with all key repos formats (Git, TFS, SVN, Perforce, etc)."
"The feature that I have found most valuable is that its number of false positives is less than the other security application platforms. Its ease of use is another good feature. It also supports most of the languages."
"The SAST component was absolutely 100% stable."
"It's not an obstacle for developers. They can easily write their code and make it more secure with Checkmarx."
"The product's most valuable feature is static code and supply chain effect analysis. It provides a lot of visibility."
"The main thing we find valuable about Checkmarx is the ease of use. It's easy to initiate scans and triage defects."
"The code sharing and updated history are valuable features."
"The learning curve is small."
"GitHub provides the SFH key to protect our passwords and connection."
"It is really simple to set up."
"I use this solution to store my code in a repository so we can manage version control which is useful."
"The product has a good UI. It's simple and easy to access, and technical help is easily available. The two-factor authentication security is another valuable feature."
"The most important feature of GitHub is the maintainability of the versions of the code."
"The initial setup was straightforward."
"The product can be improved by continuing to expand the application languages and frameworks that can be scanned for vulnerabilities. This includes expanded coverage for mobile applications as well as open-source development tools."
"Checkmarx could improve by reducing the price."
"I would like to see the rate of false positives reduced."
"The tool is currently quite static in terms of finding security vulnerabilities. It would be great if it was more dynamic and we had even more tools at our disposal to keep us safe. It would help if there was more scanning or if the process was more automated."
"If it is a very large code base then we have a problem where we cannot scan it."
"The solution's user interface could be improved because it seems outdated."
"With Checkmarx, normally you need to use one tool for quality and you need to use another tool for security. I understand that Checkmarx is not in the parity space because it's totally different, but they could include some free features or recommendations too."
"The statistics module has a function that allows you to show some statistics, but I think it's limited. Maybe it needs more information."
"This solution could be improved if migration was fully automated to make it easy, for example, to migrate repositories into GitHub."
"The development team pushes the code into a repository, and the CI/CD pipeline will perform the build. We need open-source libraries to perform the builds. It would be helpful to have the ability to link to open-source libraries like npm libraries. I don't know if GitHub Actions provides this. I would like to see that in GitHub Actions if they don't."
"It would be better if the amount of storage were increased."
"While using the solution when merging two code branches the code becomes a bit messy. This should be improved in the future."
"There can be conflict issues when two developers work on the same file or line of code, and it would be great to see that improved, possibly with an AI solution."
"The product must document the CI/CD process more."
"Though I haven't done much research, GitHub lacks in providing more functions like GitLab."
"We are not able to access GitHub from our VPN."
Checkmarx One is ranked 3rd in Application Security Tools with 67 reviews while GitHub is ranked 12th in Application Security Tools with 74 reviews. Checkmarx One is rated 7.6, while GitHub is rated 8.6. The top reviewer of Checkmarx One writes "The report function is a great, configurable asset but sometimes yields false positives". On the other hand, the top reviewer of GitHub writes "Beneficial version control and continuous integration, but guides would be helpful". Checkmarx One is most compared with SonarQube, Veracode, Fortify on Demand, Snyk and GitLab, whereas GitHub is most compared with Snyk, AWS CodeCommit, Bitbucket, Fortify on Demand and IBM Rational ClearCase. See our Checkmarx One vs. GitHub report.
See our list of best Application Security Tools vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
