We performed a comparison between Fortify on Demand and GitLab based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Speed and efficiency are great features."
"The features that I have found most valuable include its security scan, the vulnerability finds, and the web interface to search and review the issues."
"The quality of application security testing reduces risk and gives very few false positives."
"The feature that I find the most useful is being able to just see the vulnerabilities online while checking the code and then checking suggestions for fixing them."
"Almost all the features are good. This solution has simplified designing and architecting for our solutions. We were early adopters of microservices. Their documentation is good. You don't need to put in much effort in setting it up and learning stuff from scratch and start using it. The learning curve is not too much."
"The most valuable features of Micro Focus Fortify on Demand have been SAT analysis and application security."
"We identified a lot of security vulnerability much earlier in the development and could fix this well before the product was rolled out to a huge number of clients."
"It is a very easy tool for developers to use in parallel while they're doing the coding. It does auto scanning as we are progressing with the CI/CD pipeline. It has got very simple and efficient API support."
"The user interface is really good so that helps with huge teams who need to collaborate."
"GitLab's best features are continuous integration and fast deployment."
"GitLab is kind of an image of GitHub, so it gives us the flexibility to monitor our changes in the repos."
"It is scalable."
"The scalability is good."
"The solution has an established roadmap that lays out its plans for upgrades over the next two to three years."
"Git hosting has an integration with ACD which is why we liked this solution in the first place."
"CI/CD and GitLab scanning are the most valuable features."
"They have very good support, but there is always room for improvement."
"We typically do our bulk uploads of our scans with some automation at the end of the development cycle but the scanning can take a lot of time. If you were doing all of it at regular intervals it would still consume a lot of time. This could procedure could improve."
"In terms of what could be improved, we need more strategic analysis reports, not just for one specific application, but for the whole enterprise. In the next release, we need more reports and more analytic views for all the applications. There is no enterprise view in Fortify. I would like enterprise views and reports."
"They could provide features for artificial intelligence similar to other vendors."
"There are lots of limitations with code technology. It cannot scan .net properly either."
"An improvement would be the ability to get vulnerabilities flowing automatically into another system."
"With Rapid7 I utilized its reporting capabilities to deliver Client Reports within just a few minutes of checking the data. I believe that HP’s FoD Clients could sell more services to clients if HP put more effort into delivering visually pleasing reporting capabilities."
"Micro Focus Fortify on Demand could improve the user interface by making it more user-friendly."
"Perhaps the integration could be better."
"Expand features to match other tools such as a static code analysis tool so third-party integrations are not required."
"We would like to generate document pages from the sources."
"We'd always like to see better pricing on the product."
"I used Spring Cloud config and to connect that to GitLab was so hard."
"Atlassian offers more products than GitLab. GitLab offers source control management, version control and collaboration between developers. Atlassian offers features on top of this as well as more integration points for developers."
"As a partner, sometimes it's difficult to get support. They have a really complicated procedure for their support."
"The solution should again offer an on-premises deployment option."
Fortify on Demand is ranked 10th in Application Security Tools with 57 reviews while GitLab is ranked 7th in Application Security Tools with 70 reviews. Fortify on Demand is rated 8.0, while GitLab is rated 8.6. The top reviewer of Fortify on Demand writes "Provides good depth of scanning but is unfortunately not fully integrated with CIT processes ". On the other hand, the top reviewer of GitLab writes "Powerful, mature, and easy to set up and manage". Fortify on Demand is most compared with SonarQube, Veracode, Checkmarx One, Coverity and Fortify WebInspect, whereas GitLab is most compared with Microsoft Azure DevOps, SonarQube, Bamboo, AWS CodePipeline and Tekton. See our Fortify on Demand vs. GitLab report.
See our list of best Application Security Tools vendors and best Static Application Security Testing (SAST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.