We performed a comparison between GitLab and Rapid7 AppSpider based on real PeerSpot user reviews.
Find out in this report how the two Static Application Security Testing (SAST) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Their CI/CD engine is very mature. It's very comprehensive and flexible, and compared to other projects, I believe that GitLab is number one right now from that perspective."
"The solution makes the CI/CD pipelines easy to execute."
"It is scalable."
"The most valuable functionality of GitLab, for me, is the DevOps. Besides the normal source control based on Git, I find the Auto DevOps features most important in the solution."
"The merging feature makes it easy later on for the deployment."
"GitLab is very useful for pipelines, continuous integration, and continuous deployment. It is also stable."
"GitLab is being used as a repository for our codebase and it is a one stop DevOps tool we use in our team."
"We have seen a couple of merge requests or pull requests raised in GitLab. I see the interface, the way it shows the difference between the two source codes, that it is easy for anyone to do the review and then accept the request; the pull request is the valuable feature."
"The most valuable feature of Rapid7 AppSpider is the vulnerability reporting data. Additionally, the data is reported in a convenient way rather than seeing them as a PDF. We are able to generate all the reports exactly what we want in a flexible way."
"It is really accurate and the rate of false positives is very low."
"AppSpider's most valuable feature is reporting - everything is stored in the local database so it can be sent to other machines."
"The initial deployment is very straightforward and simple. The product is stable if configured properly."
"I would say that it is stable, as I am not aware of any major issues."
"When it is set up properly, it can do scanning on web apps with multiple engines automatically."
"It scans all the components developed within a web application."
"I like the ability the product has to detect vulnerabilities quickly, when it has been released in our environment, then displaying them to us."
"GitLab could improve the patch repository. It does not have support for Conan patch version regions. Additionally, better support for Kubernetes deployment is needed as part of the package."
"The user interface could be more user-friendly. We do most of our operations through the website interface but it could be better."
"It should be used by a larger number of people. They should raise awareness."
"Some of the scripts that we encountered in GitLab were not fully functional and threw up errors."
"The solution does not have many built-in functions or variables so scripting is required."
"We are having a few problems integrating with Jira at the moment, which is something that our IT department is investigating."
"I would like configuration of a YML file to be done via UI rather than a code file."
"GitLab would be improved with the addition of templates for deployment on local PCs."
"It needs better integration with mobile applications."
"The performance of the solution could improve. When I compare the speed it is slower than others on the market. There are some tricks we use to help speed up the solution."
"The enterprise interface is too simple. It should be more customizable."
"The dashboard and interface are crucial and they need some improvement."
"AppSpider has some problems with the RAM needed while scanning."
"One of the challenges I have with AppSpider is that it gives you a lot of false positives, especially when compared to other solutions."
"Integration could be better."
"The tech support is responsive but issues remain unresolved."
GitLab is ranked 8th in Static Application Security Testing (SAST) with 70 reviews while Rapid7 AppSpider is ranked 25th in Static Application Security Testing (SAST) with 13 reviews. GitLab is rated 8.6, while Rapid7 AppSpider is rated 7.8. The top reviewer of GitLab writes "Powerful, mature, and easy to set up and manage". On the other hand, the top reviewer of Rapid7 AppSpider writes "Useful vulnerability reporting data, flexible, and simple implementation". GitLab is most compared with Microsoft Azure DevOps, Bamboo, SonarQube, AWS CodePipeline and Tekton, whereas Rapid7 AppSpider is most compared with Rapid7 InsightAppSec, OWASP Zap, Acunetix, Invicti and Qualys Web Application Scanning. See our GitLab vs. Rapid7 AppSpider report.
See our list of best Static Application Security Testing (SAST) vendors.
We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.