We performed a comparison between GitLab and NowSecure based on real PeerSpot user reviews.
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Static Application Security Testing (SAST)."The solution makes the CI/CD pipelines easy to execute."
"The most valuable functionality of GitLab, for me, is the DevOps. Besides the normal source control based on Git, I find the Auto DevOps features most important in the solution."
"It speeds up our development, it's faster, safer, and more convenient."
"GitLab is a solution for source code management, container registry, pipelines, testing, and deployment."
"I like GitLab's security and SAS tools."
"It is scalable."
"As a developer, this solution is useful as a repository holder because most of the POC projects that we have are on GitLab."
"The stability is good."
"The most valuable feature is the ability to download an application without actually putting in the APK. It gives us an option to put the APK in if we want to but we can download it from the App Store and Play Store."
"The tool should include a feature that helps to edit the code directly."
"I believe there's room for improvement in the advanced features, particularly in enhancing the pipeline functionalities."
"Their RBAC is role-based access, which is fine but not very good."
"I would like more Agile features in the Premium version. The Premium version should have all Agile features that exist in the Ultimate version. IBM AOM has a complete Agile implementation, but in GitLab, you only have these features if you buy the Ultimate version. It would be good if we can use these in the Premium version."
"The documentation is confusing."
"GitLab's Windows version is yet not available and having this would be an improvement."
"It would be really good if they integrated more features in application security."
"In the free version, when a merge request is raised, there is no way to enforce certain rules. We can't enforce that this merge request must be reviewed or approved by two or three people in the team before it is pushed to the master branch. That's why we are exploring using some agents."
"In this solution, there are two kinds of testing, static analysis, and dynamic analysis. There needs some improvement in testing with dynamic analysis because I have found it is not accurate"
Earn 20 points
GitLab is ranked 7th in Static Application Security Testing (SAST) with 70 reviews while NowSecure is ranked 33rd in Static Application Security Testing (SAST). GitLab is rated 8.6, while NowSecure is rated 7.0. The top reviewer of GitLab writes "Powerful, mature, and easy to set up and manage". On the other hand, the top reviewer of NowSecure writes "Scalable and reliable, but dynamic analysis needs improvement". GitLab is most compared with Microsoft Azure DevOps, SonarQube, Bamboo, AWS CodePipeline and Tekton, whereas NowSecure is most compared with Veracode, Data Theorem API Secure , Acunetix and Checkmarx One.
See our list of best Static Application Security Testing (SAST) vendors.
We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.