We performed a comparison between Mend.io and Parasoft SOAtest based on real PeerSpot user reviews.
Find out what your peers are saying about Synopsys, Snyk, Veracode and others in Software Composition Analysis (SCA)."The dashboard view and the management view are most valuable."
"The most valuable feature is the unified JAR to scan for all langs (wss-scanner jar)."
"The reporting capability gives us the option to generate an open-source license report in a single click, which gets all copyright and license information, including dependencies."
"Its ease of use and good results are the most valuable."
"We can take some measures to improve things, replace a library, or update a library which was too old or showed severe bugs."
"The results and the dashboard they provide are good."
"The best feature is that the Mend R&D team does their due diligence for all the vulnerabilities. In case they observe any important or critical vulnerabilities, such as the Log4j-related vulnerability, we usually get a dedicated email from our R&D team saying that this particular vulnerability has been exploited in the world, and we should definitely check our project for this and take corrective actions."
"The solution boasts a broad range of features and covers much of what an ideal SCA tool should."
"Good write and read files which save execution inputs and outputs and can be stored locally."
"Every imaginable source in the entire world of information technology can be accessed and used."
"We have seen a return on investment."
"The testing time is shortened because we generate test data automatically with SOAtest."
"They have a feature where they can record traffic and create tests on the report traffic."
"We do a lot of web services testing and REST services testing. That is the focus of this product."
"The solution is scalable."
"Automatic testing is the most valuable feature."
"The turnaround time for upgrading databases for this tool as well as the accuracy could be improved."
"If anything, I would spend more time making this more user-friendly, better documenting the CLI, and adding more examples to help expand the current documentation."
"The only thing that I don't find support for on Mend Prioritize is C++."
"It would be nice to have a better way to realize its full potential and translate it within the UI or during onboarding."
"Some detected libraries do not specify a location of where in the source they were matched from, which is something that should be enhanced to enable quicker troubleshooting."
"The UI is not that friendly and you need to learn how to navigate easily."
"It would be good if it can do dynamic code analysis. It is not necessarily in that space, but it can do more because we have too many tools. Their partner relationship support is a little bit confusing. They haven't really streamlined the support process when we buy through a reseller. They should improve their process."
"It should support multiple SBOM formats to be able to integrate with old industry standards."
"The performance could be a bit better."
"During the process of working with SOAtest and building test cases, the .TST files will grow. A negative side effect is that saving your changes takes more time."
"Compatibility with HTTP 1.1 and TLS 1.2 needs to be improved."
"Tuning the tool takes time because it gives quite a long list of warnings."
"The summary reports could be improved."
"The product is very slow to start up, and that is a bit of a problem, actually."
"Reports could be customized and more descriptive according to the user's or company's requirements."
"Reporting facilities can be better."
Mend.io is ranked 4th in Software Composition Analysis (SCA) with 29 reviews while Parasoft SOAtest is ranked 23rd in Functional Testing Tools with 30 reviews. Mend.io is rated 8.4, while Parasoft SOAtest is rated 8.2. The top reviewer of Mend.io writes "Easy to use, great for finding vulnerabilities, and simple to set up". On the other hand, the top reviewer of Parasoft SOAtest writes "Reliable with a good interface but uses too much memory". Mend.io is most compared with SonarQube, Black Duck, Snyk, Checkmarx and Veracode, whereas Parasoft SOAtest is most compared with Postman, SonarQube, Coverity, Polyspace Code Prover and Tricentis Tosca.
We monitor all Software Composition Analysis (SCA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.