We performed a comparison between GitLab and HCL AppScan based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."GitLab's best feature is Actions."
"The solution's most valuable feature is that it is compatible with GitHub. The product's integration capabilities are sufficient for our small company of 35 people."
"GitLab is very well-organized and easy to use. Also, it offers most features that customers need."
"Key features allow creation of well-presented Wiki that includes ideas, development, and domains."
"The most valuable feature of GitLab is the ability to upload scripts and make changes when needed and then reupload them. Additionally, the solution is user-friendly."
"GitLab integrates well with other platforms."
"GitLab is very useful for pipelines, continuous integration, and continuous deployment. It is also stable."
"We like that we can have an all-encompassing product and don't have to implement different solutions."
"You can easily find particular features and functions through the UI."
"It is easy it is to use. It is quick to find things, because of the code scanning tools. It's quite simple to use and it is very good the way it reports the findings."
"The solution is easy to use."
"I like the recording feature."
"The most valuable feature of the solution is the scanning or security part."
"This is a stable solution."
"It's generally a very user-friendly tool. Anyone can easily learn how to scan"
"The most valuable feature of HCL AppScan is scanning QR codes."
"The solution does not have many built-in functions or variables so scripting is required."
"I would like configuration of a YML file to be done via UI rather than a code file."
"I would like more Agile features in the Premium version. The Premium version should have all Agile features that exist in the Ultimate version. IBM AOM has a complete Agile implementation, but in GitLab, you only have these features if you buy the Ultimate version. It would be good if we can use these in the Premium version."
"The only thing our company is really waiting on in terms of features is the development of metrics."
"We'd like to see better integration with the Atlassian ecosystem."
"As a partner, sometimes it's difficult to get support. They have a really complicated procedure for their support."
"Some of the scripts that we encountered in GitLab were not fully functional and threw up errors."
"As GitLab is not perfect, what needs improvement in the solution is the Wiki feature of the groups or the repertories because currently, it's not searchable by default. You'll need an indexing service such as Elasticsearch to make it searchable, and that requires too much work, so for me, it's the main feature that should be improved in GitLab. In the next version of the solution, from the top of my head, the documentation could be improved. Besides the Wiki, it would be good if there's documentation that would be automatically generated based on the code repository. In other words, there should be some tutorials from GitLab for developers in the next release."
"The product has some technical limitations."
"In future releases, I would like to see more aggressive reports. I would also like to see less false positives."
"We would like to see a check in the specific vulnerabilities in mobile applications or rooted devices, such as jailbreaking devices."
"The dashboard, for AppScan or the Fortified fast tool, which we use needs to be improved."
"It's a little bit basic when you talk about the Web Services. If AppScan improved its maturity on Web Services testing, that would be good."
"There is not a central management for static and dynamic."
"They could add a software component analysis tool."
"One thing which I think can be improved is the CI/CD Integration"
GitLab is ranked 6th in Application Security Tools with 70 reviews while HCL AppScan is ranked 14th in Application Security Tools with 41 reviews. GitLab is rated 8.6, while HCL AppScan is rated 7.8. The top reviewer of GitLab writes "Powerful, mature, and easy to set up and manage". On the other hand, the top reviewer of HCL AppScan writes " A stable and scalable product useful for application security scanning". GitLab is most compared with Microsoft Azure DevOps, SonarQube, Bamboo, AWS CodePipeline and Tekton, whereas HCL AppScan is most compared with SonarQube, Veracode, Acunetix, OWASP Zap and Contrast Security Assess. See our GitLab vs. HCL AppScan report.
See our list of best Application Security Tools vendors and best Static Application Security Testing (SAST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.