CloudStack vs Snyk comparison

Apache and Snyk are both solutions in the Cloud Management category. Apache is ranked #11 with an average rating of 8.7, while Snyk is ranked #16 with an average rating of 7.7. Apache holds a 5.1% mindshare in CM, compared to Snyk’s 0.5% mindshare. Additionally, 93% of Apache users are willing to recommend the solution, compared to 100% of Snyk users who would recommend it.

CloudStack

Read 31 CloudStack reviews

1,938 Views
1,445 Comparison Views

93% willing to recommend

Snyk

Read 47 Snyk reviews

220 Views
91 Comparison Views

100% willing to recommend

CloudStack

Snyk

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Jun 4, 2025

CloudStack and Snyk operate in different categories, with CloudStack focusing on cloud infrastructure management and Snyk on security for open-source components. Snyk appears to have the upper hand in security features, making it appealing to security-conscious organizations.

Features:CloudStack offers cloud orchestration, multi-tenancy support, and automation APIs. Snyk provides vulnerability detection, real-time alerts, and CI/CD integration, effectively safeguarding open-source dependencies.

Room for Improvement:CloudStack could improve by simplifying its deployment process and enhancing user documentation. There's also room for better integration capabilities with other cloud platforms. Scaling support for larger infrastructures would be beneficial. Snyk could enhance its user interface for ease of navigation and offer more granular control over its notifications. Expanding its vulnerability database to include more open-source libraries and better support for less common programming languages could enhance usability.

Ease of Deployment and Customer Service:CloudStack's complex deployment suits experienced IT departments, while its customer support is responsive. Snyk offers simpler SaaS deployment, facilitating easy setup with strong customer service for development-focused teams.

Pricing and ROI:CloudStack's open-source model provides a low initial cost but potential high management overheads. Snyk’s pricing reflects its extensive security features, providing a strong ROI through securing applications and reducing breaches, justifying its investment for improved security posture.

To learn more, read our detailed Cloud Management Report (Updated: May 2025).

Buyer's Guide

Cloud Management

May 2025

Download the complete report

Helped 857,162 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

CloudStack

Ranking in Cloud Management

11th

Average Rating

8.0

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

No ranking in other categories

Snyk

Ranking in Cloud Management

16th

Average Rating

8.0

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

Application Security Tools (5th), Static Application Security Testing (SAST) (7th), Container Security (5th), Software Composition Analysis (SCA) (2nd), Software Development Analytics (2nd), Cloud Security Posture Management (CSPM) (16th), DevSecOps (2nd), Application Security Posture Management (ASPM) (1st)

Mindshare comparison

As of June 2025, in the Cloud Management category, the mindshare of CloudStack is 5.1%, down from 5.9% compared to the previous year. The mindshare of Snyk is 0.5%, up from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Cloud Management

Featured Reviews

Wido Den Hollander

Community Ambassador at 42on

A solution that strikes a balance between user-friendliness, scalability, and stability

The market keeps changing, and so does technology. I think that container technology in CloudStack is an area that needs to be improved. Regarding container technology, Kubernetes is something many people want to use and something which, as of now, many are using currently. However, there is still room for improvement in Kubernetes, particularly with networking functionality and network virtualization. When it comes to what needs to be improved in CloudStack, I would say that it should stay the way it is currently. It should continue being a stable product that people can rely on since many may be inclined to follow the latest trends and hype, which is not always good for a solution's stability. It is crucial to prioritize stability, which is a key factor that companies seek. In my view, the platform could benefit from adding more metrics. More metrics would offer more insights and data on the platform's performance, utilization, and usage. Overall, I believe that having more metrics available would be highly desirable.

Read full review

meetharoon

CEO at a computer software company with 10,001+ employees

Affordable tool boosts code scanning efficiency but faces integration hurdles

The most important feature of Snyk is its cost-effectiveness compared to other solutions such as Check Point. It is easy to consolidate Snyk across multiple entities within a large organization. Additionally, our integration of Snyk into GitHub allows us to automatically scan codebases and identify issues, which has improved efficiency.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The initial implementation process was quite good."

"CloudStack’s private gateway networking feature is what enables us to offer utmost security and confidentially to our customers and partners, by enabling them to connect to their virtual data centers via dedicated, encrypted, private fiber lines that never touch the public internet space. Ease of setup and management are certainly important additional benefits for us on the engineering team."

"You can use a single API to get things done, rather than multiple APIs on multiple modules."

"The structuring of the components and isolated environments helped us when using parts of the framework at different levels of product development."

"The platform is very simple to scale-out."

"It has become easy to deploy new devices with no or minimal hardware changes. Now, a user can be ready to use a firewall within a few minutes, as compared to the traditional physical model which involved purchase, shipping, hardware configuration, cabling, power, etc."

"CloudStack provides an environment that is very simple to use, with built-in APIs and a web interface that supports almost all features of AWS and Azure."

"The most valuable feature from my point of view is access to environment via console through separate browser window."

More CloudStack pros

"Snyk's focus on security is a valuable feature. Also Snyk supports multiple programming languages, which has positively affected my security practices. I use only two or three languages, and when I change the language in a file, it detects it in the same suite. I find the AI-powered scanning overall beneficial.Using Snyk's AI-powered scanning, I can detect around ten or twenty errors in my project with about twenty thousand lines of code, so it helps improve my project by identifying a lot of potential vulnerabilities."

"Snyk categorizes the level of vulnerability into high, medium, and low, which helps organizations prioritize which issues to tackle first."

"Snyk is a developer-friendly product."

"Provides clear information and is easy to follow with good feedback regarding code practices."

"It is a stable solution. Stability-wise, I rate the solution a ten out of ten."

"It is one of the best product out there to help developers find and fix vulnerabilities quickly. When we talk about the third-party software vulnerability piece and potentially security issues, it takes the load off the user or developer. They even provide automitigation strategies and an auto-fix feature, which seem to have been adopted pretty well."

"I am impressed with the product's security vulnerability detection. My peers in security are praising the tool for its accuracy to detect security vulnerabilities. The product is very easy to onboard. It doesn't require a lot of preparation or prerequisites. It's a bit of a plug-and-play as long as you're using a package manager or for example, you are using a GitHub repository. And that is an advantage for this tool because developers don't want to add more tools to what they're currently using."

"It is easy for developers to use. The documentation is clear as well as the APIs are good and easily readable. It's a good solution overall."

More Snyk pros

Cons

"The number of contributors to this solution is relatively small compared to other solutions. However, if more frequent users of CloudStack contribute to the open-source community, it will significantly enhance the overall community experience and make it more useful for everyone involved."

"Environment is sensitive, so, unlike VMware, you can not afford middle-skilled engineers, they will ruin everything."

"Lack of support for third-party software vendors such as Veeam and Zerto creates limitations on comprehensive offerings which would include backup and disaster recovery."

"My teammates have complained about the upgrade. The source code had massive files that had to be merged with our own development to upgrade to the latest version of CloudStack. It was quite painful for them. CloudStack could add some cost management tools to give me some control over the costs associated with the number of users of my services."

"The absence of the feature, deploy an instance from a snapshot, is the weak point of the platform. It is a feature that everyone needs nowadays."

"Companies need to be knowledgeable about cloud technology. It's not for novice users."

"The Windows hosts do not get their hostnames from cloud-init."

"This product needs a lot improvement on the development side. Every new version introduces new bugs. It lacks many features needed for NFV like DPDK, SR-IOV support, etc."

More CloudStack cons

"We have seen cases where tools didn't find or recognize certain dependencies. These are known issues, to some extent, due to the complexity in the language or stack that you using. There are some certain circumstances where the tool isn't actually finding what it's supposed to be finding, then it could be misleading."

"The reporting mechanism of Snyk could improve. The reporting mechanism is available only on the higher level of license. Adjusting the policy of the current setup of recording this report is something that can improve. For instance, if you have a certain license, you receive a rating, and the rating of this license remains the same for any use case. No matter if you are using it internally or using it externally, you cannot make the adjustment to your use case. It will always alert as a risky license. The areas of licenses in the reporting and adjustments can be improve"

"Basically the licensing costs are a little bit expensive."

"Scalability has some issues because we have a lot of code and its use is mandatory. Therefore, it can be slow at times, especially because there are a lot of projects and reporting. Some UI improvements could help with this."

"We tried to integrate it into our software development environment but it went really badly. It took a lot of time and prevented the developers from using the IDE. Eventually, we didn't use it in the development area... I would like to see better integrations to help the developers get along better with the tool. And the plugin for the IDE is not so good. This is something we would like to have..."

"It would be great if they can include dynamic, interactive, and run-time scanning features. Checkmarx and Veracode provide dynamic, interactive, and run-time scanning, but Snyk doesn't do that. That's the reason there is more inclination towards Veracode, Checkmarx, or AppScan. These are a few tools available in the market that do all four types of scanning: static, dynamic, interactive, and run-time."

"The tool's initial use is complex."

"It would be ideal if there was customization with a focus on specific cybersecurity areas or capabilities."

More Snyk cons

Pricing and Cost Advice

"Give an effort to planning. If possible, contract a specialized consultant company for the initial setup and knowledge transfer."

"CloudStack is an open source solution, so you don't need to pay anything for it. When our company develops something specially for CloudStack, it is donated to the Apache Software Foundation and provided to anyone that wants to use it."

"The solution is open-source and free."

"There is no license, so the product is free unless you are buying professional technical support services."

"The Apache CloudStack is open source, so you do not have licenses to purchase."

"CloudStack is an open-source product."

"As far as I know, CS is still free of charge. If you want to pay some money, Citrix Cloud Platform is based on CS, I think. As for hypervisors – everything as usual, you need to pay for VMware and vCenter. As for XenServer, recently they changed the free feature list, so you may need to pay some money to get useful features like XenMotion."

"It is a 100% open-source solution needing just an Apache license. Also, there are no hidden fees to be paid."

"Snyk is an expensive solution."

"We are using the open-source version for the scans."

"It's inexpensive and easy to license. It comes in standard package sizing, which is straightforward. This information is publicly found on their website."

"For what Snyk offers, it has the best cost-benefit I have ever seen because you're buying the license per user."

"With Snyk, you get what you pay for. It is not a cheap solution, but you get a comprehensiveness and level of coverage that is very good. The dollars in the security budget only go so far. If I can maximize my value and be able to have some funds left over for other initiatives, I want to do that. That is what drives me to continue to say, "What's out there in the market? Snyk's expensive, but it's good. Is there something as good, but more affordable?" Ultimately, I find we could go cheaper, but we would lose the completeness of vision or scope. I am not willing to do that because Snyk does provide a pretty important benefit for us."

"Pricing-wise, it is not expensive as compared to other tools. If you have a couple of licenses, you can scan a certain number of projects. It just needs to be attached to them."

"The license model is based on the number of contributing developers. Snyk is expensive, for a startup company will most likely use the community edition, while larger companies will buy the licensed version. The price of Snyk is more than other SLA tools."

"You can get a good deal with Snyk for pricing. It's a little expensive, but it is worth it."

More Snyk pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Cloud Management solutions are best for your needs.

See recommendations

857,162 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

21%

Educational Organization

10%

University

Financial Services Firm

16%

Computer Software Company

14%

Manufacturing Company

Insurance Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about CloudStack?

The initial implementation process was quite good.

See all answers

What is your experience regarding pricing and costs for CloudStack?

CloudStack is open-source, so there is no cost apart from learning. Billing solutions, if outsourced, come at a moderate cost.

See all answers

What needs improvement with CloudStack?

CloudStack lacks a billing solution which would complete it as a full 360-degree product. Additionally, more themes and drag-and-drop interfaces could enhance the user experience. Improved document...

See all answers

How does Snyk compare with SonarQube?

Snyk does a great job identifying and reducing vulnerabilities. This solution is fully automated and monitors 24/7 to find any issues reported on the internet. It will store dependencies that you a...

See all answers

What do you like most about Snyk?

The most effective feature in securing project dependencies stems from its ability to highlight security vulnerabilities.

See all answers

What needs improvement with Snyk?

There are a lot of false positives that need to be identified and separated. The inclusion of AI to remove false positives would be beneficial. So far, I've not seen any AI features to enhance vuln...

See all answers

Comparisons

OpenNebula vs CloudStack

Compared 72% of the time

Nutanix Cloud Infrastructure (NCI) vs CloudStack

Compared 9% of the time

Sangfor HCI - Hyper Converged Infrastructure vs CloudStack

Compared 5% of the time

VMware Cloud Director vs CloudStack

Compared 5% of the time

VMware Aria Automation vs CloudStack

Compared 4% of the time

More CloudStack Competitors

GitHub Advanced Security vs Snyk

Compared 12% of the time

Trivy vs Snyk

Compared 8% of the time

SonarQube Server (formerly SonarQube) vs Snyk

Compared 8% of the time

Wiz vs Snyk

Compared 8% of the time

Black Duck vs Snyk

Compared 7% of the time

More Snyk Competitors

Product Reports

Buyer's Guide

CloudStack

June 2025

Download CloudStack product report

Buyer's Guide

Snyk

May 2025

Download Snyk product report

Also Known As

Vmops, Cloud.com

Fugue

Overview

Apache CloudStack is open source software designed to deploy and manage large networks of virtual machines, as a highly available, highly scalable Infrastructure as a Service (IaaS) cloud computing platform.

Apache

Snyk's AI Trust Platform empowers developers to innovate securely in AI-driven environments, ensuring rapid and secure software development with enhanced policy governance.

Snyk’s platform integrates AI-ready engines across the software development lifecycle, offering broad coverage with high speed and accuracy essential for fast-paced coding environments. AI-driven features include visibility, prioritization, and tailored security policies that enable proactive threat prevention and quick remediation. By focusing on LLM engineering and AI code analysis, Snyk supports secure and productive development processes. The platform's partnerships, including GenAI code assistants, enhance AI application security by addressing new threats and code velocity challenges.

What are the key features of Snyk?

Easy Integration: Snyk integrates with CI/CD pipelines, GitHub, and JIRA for seamless security management.
Multilingual Support: It offers extensive programming language support, enhancing project compatibility.
Actionable Insights: Provides accurate vulnerability detection with actionable remediation guidance.
Cloud and Container Security: Offers comprehensive checks for cloud and container environments, improving security posture.
Automation & Notifications: Automates vulnerability alerts and notifications for early threat identification in development.

What benefits should users consider in reviews?

Time Efficiency: Speeds up development by identifying and fixing vulnerabilities early in the software lifecycle.
Risk Reduction: Minimizes security risks with extensive vulnerability scanning and proactive alerting.
Productivity Boost: Enhances productivity by integrating security directly into developers' workflows.
Improved Compliance: Aids in maintaining license compliance and managing open-source dependencies effectively.

Snyk is implemented across industries focusing on agile development and DevSecOps, enhancing software delivery speed and security. It is widely used for continuous monitoring and adherence to security and licensing standards, especially in environments relying on Docker image security and CI/CD pipeline integration.

Snyk

Sample Customers

GreenQloud, Exoscale, TomTom, ASG, PC Extreme, ISWest, Grid'5000

StartApp, Segment, Skyscanner, DigitalOcean, Comic Relief

Find out what your peers are saying about VMware, Nutanix, IBM and others in Cloud Management. Updated: May 2025.

DOWNLOAD NOW

857,162 professionals have used our research since 2012.

See our list of best Cloud Management vendors.

We monitor all Cloud Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.