We performed a comparison between Fortify WebInspect and GitLab based on real PeerSpot user reviews.
Find out in this report how the two DevSecOps solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable feature of this solution is the ability to make our customers more secure."
"The accuracy of its scans is great."
"Fortify WebInspect is a scalable solution, it is good for a lot of applications."
"I've found the centralized dashboard the most valuable. For the management, it helps a lot to have abilities at the central level."
"It is scalable and very easy to use."
"The user interface is ok and it is very simple to use."
"When we are integrating it with SSC, we're able to scan and trace and see all of the vulnerabilities. Comparison is easy in SSC."
"The solution is able to detect a wide range of vulnerabilities. It's better at it than other products."
"I find the features and version control history to be most valuable for our development workflow. These aspects provide us with a clear view of changes and help us manage requests efficiently."
"I like GitLab's security and SAS tools."
"We like that we can have an all-encompassing product and don't have to implement different solutions."
"Their CI/CD engine is very mature. It's very comprehensive and flexible, and compared to other projects, I believe that GitLab is number one right now from that perspective."
"It scales well."
"GitLab offers a good interface for doing code reviews between two colleagues."
"The most valuable features of GitLab are the review, patch repo, and plans are in YAML."
"Key features allow creation of well-presented Wiki that includes ideas, development, and domains."
"One thing I would like to see them introduce is a cloud-based platform."
"We have had a problem with authentification."
"I'm not sure licensing, but on the pricing, it's a bit costly. It's a bit overpriced. Though it is an enterprise tool, there are other tools also with similar functionalities."
"Fortify WebInspect could improve user-friendliness. Additionally, it is very bulky to use."
"We have often encountered scanning errors."
"The initial setup was complex."
"Lately, we've seen more false negatives."
"Not sufficiently compatible with some of our systems."
"I would like configuration of a YML file to be done via UI rather than a code file."
"We'd always like to see better pricing on the product."
"Perhaps the integration could be better."
"It would be better if there weren't any outages. There are occasions where we usually see a lot of outages using GitLab. It happens at least once a week or something like that. Whatever pipelines you're running, to check the logs, you need to have a different set of tools like Argus or something like that. If you have pipelines running on GitLab, you need a separate service deployed to view the logs, which is kind of a pain. If the logs can be used conveniently on GitLab, that would be definitely helpful. I'm not talking about the CI/CD pipelines but the back-end services and microservices deployed over GitLab. To view the logs for those microservices, you need to have separate log viewers, which is kind of a pain."
"We are having a few problems integrating with Jira at the moment, which is something that our IT department is investigating."
"The documentation could be improved to help newcomers better understand things like creating new branches."
"When deploying the solution on cloud and the CI/CD pipeline, we have to define the steps and it becomes confusing."
"GitLab's UI could be improved."
Fortify WebInspect is ranked 8th in DevSecOps with 17 reviews while GitLab is ranked 3rd in DevSecOps with 70 reviews. Fortify WebInspect is rated 7.0, while GitLab is rated 8.6. The top reviewer of Fortify WebInspect writes "A powerful tool catering to multiple use cases that provides reasonably good technical support". On the other hand, the top reviewer of GitLab writes "Powerful, mature, and easy to set up and manage". Fortify WebInspect is most compared with PortSwigger Burp Suite Professional, Fortify on Demand, Acunetix, OWASP Zap and Aqua Cloud Security Platform, whereas GitLab is most compared with Microsoft Azure DevOps, SonarQube, Bamboo, AWS CodePipeline and Tekton. See our Fortify WebInspect vs. GitLab report.
See our list of best DevSecOps vendors.
We monitor all DevSecOps reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.