We performed a comparison between Fortify WebInspect and GitLab based on real PeerSpot user reviews.
Find out in this report how the two DevSecOps solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Technical support has been good."
"There are lots of small settings and tools, like an HTTP editor, that are very useful."
"The user interface is ok and it is very simple to use."
"I've found the centralized dashboard the most valuable. For the management, it helps a lot to have abilities at the central level."
"Guided Scan option allows us to easily scan and share reports."
"It's a well-known platform for doing dynamic application scanning."
"The solution's technical support was very helpful."
"The solution is easy to use."
"Key features allow creation of well-presented Wiki that includes ideas, development, and domains."
"The user interface is really good so that helps with huge teams who need to collaborate."
"GitLab is kind of an image of GitHub, so it gives us the flexibility to monitor our changes in the repos."
"The most important features of GitLab for us are issue management and all the CI/CD tools. Another aspect that I love about GitLab is the UI."
"The scalability is good."
"This product is always evolving, and they listen to the customers."
"CI/CD is valuable for me."
"I have found the most valuable features of GitLab are the GitClone, GitPush, GitPull, GitMatch, GitMit, GitCommit, and GitStatus."
"Fortify WebInspect's shortcoming stems from the fact that it is a very expensive product in Korea, which makes it difficult for its potential customers to introduce the product in their IT environment."
"Fortify WebInspect could improve user-friendliness. Additionally, it is very bulky to use."
"We have often encountered scanning errors."
"A localized version, for example, in Korean would be a big improvement to this solution."
"It took us between eight and ten hours to scan an entire site, which is somewhat slow and something that I think can be improved."
"We have had a problem with authentification."
"The scanner could be better."
"Not sufficiently compatible with some of our systems."
"GitLab's Windows version is yet not available and having this would be an improvement."
"We'd always like to see better pricing on the product."
"It could have more security integrations and the ability to check the vulnerability of the code. I don't think it is a responsibility of Gitlab, but it would be nice to have more options to integrate with."
"We are having a few problems integrating with Jira at the moment, which is something that our IT department is investigating."
"When deploying the solution on cloud and the CI/CD pipeline, we have to define the steps and it becomes confusing."
"I would like more Agile features in the Premium version. The Premium version should have all Agile features that exist in the Ultimate version. IBM AOM has a complete Agile implementation, but in GitLab, you only have these features if you buy the Ultimate version. It would be good if we can use these in the Premium version."
"GitLab could consider introducing a code-scanning tool. Purchasing such tools from external markets can incur charges, which might not be favorable. Integrating these features into GitLab would streamline the pipeline and make it more convenient for users."
"We would like to generate document pages from the sources."
Fortify WebInspect is ranked 8th in DevSecOps with 17 reviews while GitLab is ranked 3rd in DevSecOps with 70 reviews. Fortify WebInspect is rated 7.0, while GitLab is rated 8.6. The top reviewer of Fortify WebInspect writes "A powerful tool catering to multiple use cases that provides reasonably good technical support". On the other hand, the top reviewer of GitLab writes "Powerful, mature, and easy to set up and manage". Fortify WebInspect is most compared with PortSwigger Burp Suite Professional, Fortify on Demand, Acunetix, OWASP Zap and Synopsys API Security Testing, whereas GitLab is most compared with Microsoft Azure DevOps, Bamboo, SonarQube, AWS CodePipeline and Tekton. See our Fortify WebInspect vs. GitLab report.
See our list of best DevSecOps vendors.
We monitor all DevSecOps reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.