We performed a comparison between Fortify WebInspect and GitLab based on real PeerSpot user reviews.
Find out in this report how the two DevSecOps solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable feature is the static analysis."
"When we are integrating it with SSC, we're able to scan and trace and see all of the vulnerabilities. Comparison is easy in SSC."
"The solution's technical support was very helpful."
"The user interface is ok and it is very simple to use."
"There are lots of small settings and tools, like an HTTP editor, that are very useful."
"Reporting, centralized dashboard, and bird's eye view of all vulnerabilities are the most valuable features."
"It's a well-known platform for doing dynamic application scanning."
"Fortify WebInspect is a scalable solution, it is good for a lot of applications."
"It scales well."
"Everything is easy to configure and easy to work with."
"The solution's service delivery model is fantastic."
"I have found the most valuable feature is security control. I also like the branching and cloning software."
"The dashboard and interface make it easy to use."
"GitLab's best features are maintenance, branch integration, and development infrastructure."
"GitLab is very well-organized and easy to use. Also, it offers most features that customers need."
"The most valuable features of GitLab are ease of use and highly intuitive UI and performance."
"Lately, we've seen more false negatives."
"The installation could be a bit easier. Usually it's simple to use, but the installation is painful and a bit laborious and complex."
"Our biggest complaint about this product is that it freezes up, and literally doesn't work for us."
"Creating reports is very slow and it is something that should be improved."
"Not sufficiently compatible with some of our systems."
"I'm not sure licensing, but on the pricing, it's a bit costly. It's a bit overpriced. Though it is an enterprise tool, there are other tools also with similar functionalities."
"We have had a problem with authentification."
"The initial setup was complex."
"We have only seen a couple of issues on Gitlab, which we use for building some of the applications."
"The initial setup was quite challenging because it takes some time to understand how to pull out or push the code."
"The tool should include a feature that helps to edit the code directly."
"This solution could be improved by adding modifications such as slack notifications."
"I believe there's room for improvement in the advanced features, particularly in enhancing the pipeline functionalities."
"I would like to see better integration with project management tools such as Jira."
"I used Spring Cloud config and to connect that to GitLab was so hard."
"There is a need to improve or adopt AI into the ecosystem like a co-pilot, which Microsoft has done with GitHub."
Fortify WebInspect is ranked 8th in DevSecOps with 17 reviews while GitLab is ranked 3rd in DevSecOps with 70 reviews. Fortify WebInspect is rated 7.0, while GitLab is rated 8.6. The top reviewer of Fortify WebInspect writes "A powerful tool catering to multiple use cases that provides reasonably good technical support". On the other hand, the top reviewer of GitLab writes "Powerful, mature, and easy to set up and manage". Fortify WebInspect is most compared with PortSwigger Burp Suite Professional, Fortify on Demand, Acunetix, OWASP Zap and Synopsys API Security Testing, whereas GitLab is most compared with Microsoft Azure DevOps, Bamboo, SonarQube, AWS CodePipeline and Tekton. See our Fortify WebInspect vs. GitLab report.
See our list of best DevSecOps vendors.
We monitor all DevSecOps reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.