GitHub vs Sonatype Repository Firewall Comparison 2024

GitHub

Sonatype Repository Firewall

GitHub

Read 74 GitHub reviews

2,341 views|966 comparisons

Sonatype Repository Firewall

Read 3 Sonatype Repository Firewall reviews

753 views|384 comparisons

Comparison Buyer's Guide

Download the complete report

Buyer's Guide

GitHub vs. Sonatype Repository Firewall

May 2024

Executive Summary

We performed a comparison between GitHub and Sonatype Repository Firewall based on real PeerSpot user reviews.

Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed GitHub vs. Sonatype Repository Firewall Report (Updated: May 2024).

Download the complete report

772,679 professionals have used our research since 2012.

Featured Review

RiteshKapse

IT Analyst at Envidia Graphics Private Limited

Beneficial version control and continuous integration, but guides would be helpful

In my case, I prefer to keep my repositories public, especially for small-scale organizations that don't require a high level of privacy. I find it... Read more →

Ashish Shukla

Global Treasurer at Genpact

You will get clean code every time, and that's a great achievement

I believe this tool is being used by most of the product development team in the organization. It's part of the CI/CD pipeline. You can say it's a... Read more →

Quotes From Members

We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:

Pros

"The version control functionality for this solution has been most valuable, especially when managing projects with multiple versions.""The Projects Tab, which shows you the todo list and the progress for projects, is very helpful.""The initial setup was easy.""There are no issues. It's simple, easy, and fully compatible from my perspective with Git.""The versioning of the code and the tracking of changes are definitely some of my top features.""The most important feature of GitHub is the maintainability of the versions of the code.""This solution is just easy to use.""I would rate the stability a ten out of ten."

More GitHub Pros →

"The product's network and intrusion protection features are valuable. It also has rules and compliance features for security.""Another thing that I like about Sonatype is that if you download something today, and five days from today it becomes vulnerable, it will notify you."

More Sonatype Repository Firewall Pros →

Cons

"This solution could be improved by offering crowd sourced support where we could ask questions to other users.""We want to incorporate management comments within GitHub, making it more like a product management tool. We haven't done that yet. Another change we're considering is migrating from GitHub to Azure DevOps, especially now that Microsoft has introduced it.""GitHub storage is one of the main requirements and it could improve.""I think it would be valuable to have more security. Some of the data is very open to everyone.""We are not able to access GitHub from our VPN.""The support team needs to have a well-defined SLA model since it is an area where the tool currently has some shortcomings.""There can be conflict issues when two developers work on the same file or line of code, and it would be great to see that improved, possibly with an AI solution.""Though I haven't done much research, GitHub lacks in providing more functions like GitLab."

More GitHub Cons →

"What I don't like is the lack of an option to pick up the phone and call someone for support. That is something they need to improve on. They need to have a professional services package, or they need to include that option with their services.""The tool needs to improve its file systems. The product should also include zero test feature."

More Sonatype Repository Firewall Cons →

Pricing and Cost Advice

"The private repositories are free, which is very good."

"It is open-source. There is no license for GitHub."

"The price of this solution is reasonable."

"If there are only 10 people using a particular repository, then GitHub is free. But if we increase the number of users, we need to pay the normal charge for GitHub."

"We have an enterprise licensing agreement, and I am not part of the finance department so I can't say how much it costs."

"I haven't had to pay anything for GitHub, I use the free version."

"The licensing model for GitHub is user-based. Whenever the new developer joins we have to get a new license and register their ID. The overall price of the solution is reasonable."

"The licensing model from GitHub is very clear."

More GitHub Pricing and Cost Advice →

"The pricing is reasonable if you're a large enterprise developing code. It's not super-expensive."

More Sonatype Repository Firewall Pricing and Cost Advice →

See Which Vendors Are Best For You

Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.

See Recommendations

772,679 professionals have used our research since 2012.

Questions from the Community

What do you like most about GitHub?

Top Answer: The control is the most valuable feature as developers can work on a single code.

Read all 35 answers →

What is your experience regarding pricing and costs for GitHub?

Top Answer:We pay a subscription-based yearly licensing fee for the solution. If you buy extra support, you pay an additional cost.

Read all 26 answers →

What needs improvement with GitHub?

Top Answer:The solution's cost is high and should be reduced. Our company has a bundle product. Sometimes, people from outside our organization also need to collaborate with our code, and we need to integrate… more »

Read all 40 answers →

What do you like most about Sonatype Nexus Firewall?

Top Answer:The product's network and intrusion protection features are valuable. It also has rules and compliance features for security.

Read all 2 answers →

What is your primary use case for Sonatype Nexus Firewall?

Top Answer:The product helps with vulnerability and security assessment. It also helps with assessment at the configuration level.

Read all 3 answers →

What advice do you have for others considering Sonatype Nexus Firewall?

Top Answer:I would rate the solution an eight out of ten.

Read all 2 answers →

Ranking

9th

out of 75 in Application Security Tools

Views

2,341

Comparisons

966

Reviews

Average Words per Review

359

Rating

8.6

35th

out of 75 in Application Security Tools

Views

753

Comparisons

384

Reviews

Average Words per Review

105

Rating

8.0

Comparisons

Snyk vs. GitHub

Compared 28% of the time.

AWS CodeCommit vs. GitHub

Compared 12% of the time.

Fortify on Demand vs. GitHub

Compared 12% of the time.

Bitbucket vs. GitHub

Compared 11% of the time.

Bitbucket Server vs. GitHub

Compared 2% of the time.

More GitHub Competitors →

JFrog Xray vs. Sonatype Repository Firewall

Compared 35% of the time.

Cisco Secure Firewall vs. Sonatype Repository Firewall

Compared 12% of the time.

Black Duck vs. Sonatype Repository Firewall

Compared 9% of the time.

Sonatype Lifecycle vs. Sonatype Repository Firewall

Compared 8% of the time.

Veracode vs. Sonatype Repository Firewall

Compared 8% of the time.

More Sonatype Repository Firewall Competitors →

Also Known As

Sonatype Nexus Firewall, Nexus Firewall

Learn More

GitHub

Sonatype

Overview

GitHub is a web-based Git repository hosting service. It offers all of the distributed revision control and source code management (SCM) functionality of Git as well as adding its own features. Unlike Git, which is strictly a command-line tool, GitHub provides a Web-based graphical interface and desktop as well as mobile integration. It also provides access control and several collaboration features such as bug tracking, feature requests, task management, and wikis for every project.

Sonatype Repository Firewall is a cloud-based security solution designed to safeguard your software supply chain against malicious components. It operates by meticulously scanning and evaluating each new component against customized governance policies, thereby effectively identifying and blocking potential threats before they infiltrate your development pipeline. What sets Sonatype Repository Firewall apart is its user-friendly setup, seamless integration with existing workflows, and remarkable scalability, making it suitable for software development environments of any size. Key features include blocking malicious components through behavioral analysis, malware scanning, and vulnerability assessment, as well as the ability to enforce custom governance policies. By utilizing this tool, organizations can enhance their software supply chain security, mitigate risks related to supply chain attacks, bolster compliance with industry standards, and ultimately reduce costs associated with security incidents.

Sample Customers

Dominion Enterprises, NASA, Braintree, SAP, CyberAgent

EDF, Tomitribe, Crosskey, Blackboard, Travel audience

Top Industries

REVIEWERS

Computer Software Company20%

Financial Services Firm18%

Government9%

Manufacturing Company7%

VISITORS READING REVIEWS

Computer Software Company13%

Manufacturing Company11%

Financial Services Firm11%

Government7%

VISITORS READING REVIEWS

Financial Services Firm33%

Government9%

Computer Software Company6%

Manufacturing Company6%

Company Size

REVIEWERS

Small Business43%

Midsize Enterprise9%

Large Enterprise49%

VISITORS READING REVIEWS

Small Business22%

Midsize Enterprise13%

Large Enterprise66%

VISITORS READING REVIEWS

Small Business14%

Midsize Enterprise11%

Large Enterprise75%

GitHub vs Sonatype Repository Firewall comparison