We performed a comparison between CAST Highlight and Mend.io based on real PeerSpot user reviews.
Find out in this report how the two Software Composition Analysis (SCA) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The way it tells you which codebase is more ready for the cloud and which codebase is less ready is very valuable. It works seamlessly with most languages."
"The most valuable features of the CAST Highlight are the interface and there are three notations that are very simple to understand and communicate with."
"The most valuable features of CAST Highlight are automation and speed."
"It offers good performance."
"CAST Highlight is easy to use and has a good dashboard."
"For us, the most valuable tool was open-source licensing analysis."
"Our dev team uses the fix suggestions feature to quickly find the best path for remediation."
"The solution is scalable."
"The inventory management as well as the ability to identify security vulnerabilities has been the most valuable for our business."
"Its ease of use and good results are the most valuable."
"We use a lot of open sources with a variety of containers, and the different open sources come with different licenses. Some come with dual licenses, some are risky and some are not. All our three use cases are equally important to us and we found WhiteSource handles them decently."
"Attribution and license due diligence reports help us with aggregating the necessary data that we, in turn, have to provide to satisfy the various licenses copyright and component usage disclosures in our software."
"We can take some measures to improve things, replace a library, or update a library which was too old or showed severe bugs."
"There's a bit of a learning curve at the outset."
"CAST Highlight could improve to allow us to comment and do a deep analysis by ourselves."
"The reports that describe the issues of concern are rather abstract and the issues should be more clearly described to the user."
"Its price should be better. It is a pretty costly tool. They have two products: CAST Highlight and CAST AIP. I would expect CAST Highlight to have the Help dashboard and the Engineering dashboard. These dashboards are currently a part of CAST AIP, and if these are made available in CAST Highlight, customers won't have to use two different products all the time."
"The ease of configuration and customization could be improved in CAST Highlight."
"The only thing that I don't find support for on Mend Prioritize is C++."
"It would be nice to have a better way to realize its full potential and translate it within the UI or during onboarding."
"The UI is not that friendly and you need to learn how to navigate easily."
"At times, the latency of getting items out of the findings after they're remediated is higher than it should be."
"On the reporting side, they could make some improvements. They are making the reports better and better, but sometimes it takes a lot of time to generate a report for our entire organization."
"Make the product available in a very stable way for other web browsers."
"The turnaround time for upgrading databases for this tool as well as the accuracy could be improved."
"It would be good if it can do dynamic code analysis. It is not necessarily in that space, but it can do more because we have too many tools. Their partner relationship support is a little bit confusing. They haven't really streamlined the support process when we buy through a reseller. They should improve their process."
CAST Highlight is ranked 10th in Software Composition Analysis (SCA) with 5 reviews while Mend.io is ranked 4th in Software Composition Analysis (SCA) with 29 reviews. CAST Highlight is rated 7.8, while Mend.io is rated 8.4. The top reviewer of CAST Highlight writes "Easy to set up with optimized and automated insights". On the other hand, the top reviewer of Mend.io writes "Easy to use, great for finding vulnerabilities, and simple to set up". CAST Highlight is most compared with SonarQube, Snyk, Checkmarx, Veracode and Black Duck, whereas Mend.io is most compared with SonarQube, Black Duck, Snyk, Checkmarx and Veracode. See our CAST Highlight vs. Mend.io report.
See our list of best Software Composition Analysis (SCA) vendors.
We monitor all Software Composition Analysis (SCA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.