We performed a comparison between GitHub and Sonatype Repository Firewall based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The deployment is fast since we just have to run the script, and once it's done, it takes a few minutes."
"The tool also helps organize collaboration by allowing users to share a repository with other developers."
"GitHub's source code management is top-notch. It's easy to inspect changes and visualize code and differences. Their action system is comprehensive in terms of making changes and automation."
"The code sharing and updated history are valuable features."
"GitHub is pure or open-source; you can access it anywhere. You can have a lot of collateral information. You can make the changes and do the reviews from one place."
"We use GitHub as a repository."
"All the features are valuable, but the most important feature is that GitHub has advanced security. The second important feature is the capability to create custom GitHub actions and the capability to deploy in different types of architectural infrastructures, such as hybrid, private, or public."
"The Projects Tab, which shows you the todo list and the progress for projects, is very helpful."
"Another thing that I like about Sonatype is that if you download something today, and five days from today it becomes vulnerable, it will notify you."
"The product's network and intrusion protection features are valuable. It also has rules and compliance features for security."
"The project management sector really needs some improvement for GitHub. I don't know if GitHub made sense for me as a project manager."
"I cannot recall coming across any shortcomings of the product."
"GitHub storage is one of the main requirements and it could improve."
"GitHub's issue management could be improved a little from an organization standpoint. It would be helpful to have the ability to organize a work board or a backlog more comprehensively. For organizations migrating to GitHub from arbitrary systems, it's a little bit of a headache to move on to that system."
"Specifically, I want the solution to offer AI-based merging support, as it is the only area where the product has certain shortcomings."
"We are not able to access GitHub from our VPN."
"The solution needs some more controls for deleting code."
"The UI is a little outdated, so that could be improved."
"What I don't like is the lack of an option to pick up the phone and call someone for support. That is something they need to improve on. They need to have a professional services package, or they need to include that option with their services."
"The tool needs to improve its file systems. The product should also include zero test feature."
GitHub is ranked 9th in Application Security Tools with 75 reviews while Sonatype Repository Firewall is ranked 35th in Application Security Tools with 3 reviews. GitHub is rated 8.6, while Sonatype Repository Firewall is rated 8.4. The top reviewer of GitHub writes "Beneficial version control and continuous integration, but guides would be helpful". On the other hand, the top reviewer of Sonatype Repository Firewall writes "You will get clean code every time, and that's a great achievement". GitHub is most compared with Snyk, AWS CodeCommit, Fortify on Demand, Bitbucket and Bitbucket Server, whereas Sonatype Repository Firewall is most compared with JFrog Xray, Cisco Secure Firewall, Black Duck, Sonatype Lifecycle and GitLab. See our GitHub vs. Sonatype Repository Firewall report.
See our list of best Application Security Tools vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.