OpenText Static Application Security Testing vs Snyk comparison

OpenText Static Application...

Read 50 Snyk reviews

19,806 Views
8,319 Comparison Views

100% willing to recommend

Download the complete report

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between OpenText Static Application Security Testing and Snyk based on real PeerSpot user reviews.

Find out what your peers are saying about Veracode, Checkmarx, OpenText and others in Static Code Analysis.

To learn more, read our detailed Static Code Analysis Report (Updated: November 2025).

Buyer's Guide

Static Code Analysis

November 2025

Helped 879,371 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

ROI

Sentiment score

6.8

OpenText Static Application Security Testing received mixed reviews, praising cost savings and partnerships, but highlighting challenges in quantifying ROI.

Sentiment score

6.5

Snyk boosts developer productivity by saving hours daily, improving vulnerability visibility, and offering potential ROI up to 70%.

No quotes available

For more quotes and insights, download the OpenText Static Application Security Testing report

I can see that Snyk saves the costs of hiring security developers for vulnerability scanning and security checks, as that responsibility is now managed by Snyk.

For more quotes and insights, download the Snyk report

Software Engineer at a computer software company with 11-50 employees

Customer Service

Sentiment score

6.7

Generally positive with dedicated teams, though some seek improvements in ticket system and responsiveness for OpenText support.

Sentiment score

7.6

Snyk's technical support is highly rated for responsiveness, direct engineer communication, but needs improvement in response time and coverage.

The customer service and support for Fortify Static Code Analyzer are better than those for LoadRunner.

For more quotes and insights, download the OpenText Static Application Security Testing report

CTO at Marco Technology

The technical support has been good because we always received answers to our questions.

EvgenGulak

Manager at DTEK

Our long-standing association has ensured smooth communication, resulting in favorable support experiences and satisfactory issue resolution.

For more quotes and insights, download the Snyk report

CEO at a computer software company with 10,001+ employees

Their response time aligns with their SLA commitments.

reviewer2731785

Information Security Strategy at a insurance company with 10,001+ employees

We could understand the implementation of the product and other features without the need for human interaction.

ANDRESANTOS

Senior DevSecOps at V8

Scalability Issues

Sentiment score

7.8

OpenText SAST is scalable for various project sizes but needs improvement in speed and infrastructure management.

Sentiment score

7.2

Snyk offers scalable, efficient scanning with high adoption despite minor delays, integrating seamlessly into cloud environments for developers.

Fortify Static Code Analyzer integrates well and is scalable.

For more quotes and insights, download the OpenText Static Application Security Testing report

CTO at Marco Technology

Snyk allows for scaling across large organizations, accommodating tens of thousands of applications and over 60,000 repositories.

CEO at a computer software company with 10,001+ employees

Snyk is very scalable and can handle my organization's growth and changing needs.

For more quotes and insights, download the Snyk report

Software Engineer at a computer software company with 11-50 employees

Stability Issues

Sentiment score

7.5

OpenText Static Application Security Testing is reliable and stable, with improvements since version 19.10, and benefits from proper training.

Sentiment score

7.8

Users rate Snyk stability highly, citing minimal downtime and reliable performance, despite occasional documentation and upgrade-related issues.

The stability of Fortify Static Code Analyzer is generally good.

CTO at Marco Technology

I would rate the product stability as an eight.

For more quotes and insights, download the OpenText Static Application Security Testing report

Lead Information Security Analyst at a financial services firm with 10,001+ employees

No quotes available

For more quotes and insights, download the Snyk report

Room For Improvement

OpenText SAST faces high costs, complex use, false positives, and needs better integration, language support, and feature enhancements.

Snyk needs improved language support, analysis tools, and integrations, alongside better UI, notifications, compliance features, and user resources.

We would appreciate if the AI could give us more information about improvements and reduce the number of false positives, but this solution doesn't have this function yet.

EvgenGulak

Manager at DTEK

It should be easier to install, perhaps through a container-based approach where everything is combined into one image or pack of containers.

CTO at Marco Technology

It would be really helpful to include trending vulnerabilities and how to manage them.

For more quotes and insights, download the OpenText Static Application Security Testing report

Lead Information Security Analyst at a financial services firm with 10,001+ employees

It lacks the ability to select branches on its Web UI, forcing users to rely on CLI or CI/CD for that functionality.

For more quotes and insights, download the Snyk report

CEO at a computer software company with 10,001+ employees

The inclusion of AI to remove false positives would be beneficial.

PawanSingh2

Director at Marsh

As we are moving toward GenAI, we expect Snyk to leverage AI features to improve code scanning findings.

reviewer2731785

Information Security Strategy at a insurance company with 10,001+ employees

Setup Cost

Enterprise users find OpenText Static Application Security Testing's pricing high but consider it economical compared to other major solutions.

Snyk's enterprise pricing is competitive, scalable, and feature-rich, offering clear, user-based models ideal for large organizations.

The pricing of Fortify Static Code Analyzer is good, with a flexible model that allows customers to choose a setup that suits their needs.

CTO at Marco Technology

My experience with the pricing, setup costs, and licensing has been good.

For more quotes and insights, download the OpenText Static Application Security Testing report

Lead Information Security Analyst at a financial services firm with 10,001+ employees

Snyk is recognized as the cheapest option we have evaluated.

For more quotes and insights, download the Snyk report

CEO at a computer software company with 10,001+ employees

After negotiations, we received a special package with a good price point.

reviewer2731785

Information Security Strategy at a insurance company with 10,001+ employees

Snyk is less expensive.

ANDRESANTOS

Senior DevSecOps at V8

Valuable Features

OpenText SAST enhances security by automating vulnerability detection, integrating across tools, and providing detailed remediation and compliance guidance.

Snyk offers simple, cost-effective vulnerability scanning, integrates with development tools, and supports multiple languages with actionable advice.

Fortify Static Code Analyzer has the capability of giving fewer false positives compared to other tools.

Lead Information Security Analyst at a financial services firm with 10,001+ employees

The most valuable feature of Fortify Static Code Analyzer is its extensive language support, covering many languages from legacy ones to the newest.

For more quotes and insights, download the OpenText Static Application Security Testing report

CTO at Marco Technology

The most impactful feature of Fortify Static Code Analyzer in identifying vulnerabilities is the ratio of total number of vulnerabilities to false positives.

EvgenGulak

Manager at DTEK

Our integration of Snyk into GitHub allows us to automatically scan codebases and identify issues, which has improved efficiency.

CEO at a computer software company with 10,001+ employees

Snyk helps detect vulnerabilities before code moves to production, allowing for integration with DevOps and providing a shift-left advantage by identifying and fixing bugs before deployment.

PawanSingh2

Director at Marsh

Snyk has positively impacted my organization by improving the security posture across all software repositories, resulting in fewer critical vulnerabilities, more confidence in overall product security, and faster security compliance for project clients.

For more quotes and insights, download the Snyk report

Software Engineer at a computer software company with 11-50 employees

Categories and Ranking

OpenText Static Application...

Average Rating

8.2

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

Static Code Analysis (3rd)

Snyk

Average Rating

8.2

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

Application Performance Monitoring (APM) and Observability (17th), Application Security Tools (6th), Static Application Security Testing (SAST) (7th), GRC (5th), Cloud Management (13th), Vulnerability Management (13th), Container Security (6th), Software Composition Analysis (SCA) (1st), Software Development Analytics (2nd), Cloud Security Posture Management (CSPM) (16th), DevSecOps (3rd), Application Security Posture Management (ASPM) (2nd), AI Security (4th)

Mindshare comparison

While both are Security Software solutions, they serve different purposes. OpenText Static Application Security Testing is designed for Static Code Analysis and holds a mindshare of 8.3%, down 10.9% compared to last year.
Snyk, on the other hand, focuses on Application Security Tools, holds 6.1% mindshare, down 7.9% since last year.

Static Code Analysis Market Share Distribution
Product	Market Share (%)
OpenText Static Application Security Testing	8.3%
Veracode	16.5%
Checkmarx One	11.6%
Other	63.6%

Static Code Analysis

Application Security Tools Market Share Distribution
Product	Market Share (%)
Snyk	6.1%
SonarQube	19.2%
Checkmarx One	10.2%
Other	64.5%

Application Security Tools

Featured Reviews

Focuses on detailed scans to find critical vulnerabilities while ensuring minimal false positives

Lead Information Security Analyst at a financial services firm with 10,001+ employees

I think Fortify Static Code Analyzer could be improved by updating the number of rule packs according to the latest vulnerabilities we find each year. We have updated to a version that is one less than the current latest version. It would be really helpful to include trending vulnerabilities and how to manage them. While it includes all the OWASP top factors, AI has come into the picture, so those updates should also be considered. I haven't thought much about additional features for improvement since I am using it daily. Most of our work revolves around scanning and providing the results, which sometimes feels like a crunch. However, I believe rule pack updates should be implemented. It feels easy to upgrade to the latest version as well.

Read full review

Improves security posture by actively reducing critical vulnerabilities and guiding remediation

Software Engineer at a computer software company with 11-50 employees

Snyk's main features include open-source vulnerability scanning, code security, container security, infrastructure as code security, risk-based prioritization, development-first integration, continuous monitoring and alerting, automation, and remediation. The best features I appreciate are the vulnerability checking, vulnerability scanning, and code security capabilities, as Snyk scans all open-source dependencies for known vulnerabilities and helps with license compliance for open-source components. Snyk integrates into IDEs, allowing issues to be caught as they appear in the code dynamically and prioritizes risk while providing remediation advice. Snyk provides actionable remediation advice on where vulnerabilities can exist and where code security is compromised, automatically scanning everything and providing timely alerts. Snyk has positively impacted my organization by improving the security posture across all software repositories, resulting in fewer critical vulnerabilities, more confidence in overall product security, and faster security compliance for project clients. Snyk has helped reduce vulnerabilities significantly. Initially, the repository had 17 to 31 critical and high vulnerabilities, but Snyk has helped manage them down to just five vulnerabilities, which are now lower and not high or critical.

Read full review

See which vendors are best for you

Use our free recommendation engine to learn which Static Code Analysis solutions are best for your needs.

See recommendations

879,371 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

28%

Computer Software Company

11%

Manufacturing Company

Government

Financial Services Firm

14%

Computer Software Company

12%

Manufacturing Company

10%

Insurance Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	4
Midsize Enterprise	3
Large Enterprise	11

By reviewers
Company Size	Count
Small Business	21
Midsize Enterprise	9
Large Enterprise	21

Questions from the Community

What do you like most about Fortify Static Code Analyzer?

Integrating the Fortify Static Code Analyzer into our software development lifecycle was straightforward. It highlights important information beyond just syntax errors. It identifies issues like pa...

What is your experience regarding pricing and costs for Fortify Static Code Analyzer?

My experience with the pricing, setup costs, and licensing has been good. We have the scan machines, and we are planning to request more from Micro Focus now. We have calls every month or every oth...

What needs improvement with Fortify Static Code Analyzer?

How does Snyk compare with SonarQube?

Snyk does a great job identifying and reducing vulnerabilities. This solution is fully automated and monitors 24/7 to find any issues reported on the internet. It will store dependencies that you a...

What do you like most about Snyk?

The most effective feature in securing project dependencies stems from its ability to highlight security vulnerabilities.

What needs improvement with Snyk?

There are a lot of false positives that need to be identified and separated. The inclusion of AI to remove false positives would be beneficial. So far, I've not seen any AI features to enhance vuln...

Black Duck SCA vs OpenText Static Application Security Testing

Comparisons

Compared 29% of the time

Veracode vs OpenText Static Application Security Testing

Compared 12% of the time

Sonatype Lifecycle vs OpenText Static Application Security Testing

Compared 7% of the time

JFrog Xray vs OpenText Static Application Security Testing

Compared 6% of the time

Mend.io vs OpenText Static Application Security Testing

Compared 6% of the time

More OpenText Static Application Security Testing Competitors

SonarQube vs Snyk

Compared 15% of the time

Trivy vs Snyk

Compared 6% of the time

GitHub Advanced Security vs Snyk

Compared 6% of the time

Wiz vs Snyk

Compared 3% of the time

Checkmarx One vs Snyk

Compared 2% of the time

More Snyk Competitors

Product Reports

Buyer's Guide

OpenText Static Application Security Testing

December 2025

OpenText Static Application Security Testing report

Download OpenText Static Application Security Testing product report

Buyer's Guide

Download Snyk product report

December 2025

Also Known As

Fortify Static Code Analysis SAST

Fugue, Snyk AppRisk

Overview

OpenText Static Application Security Testing empowers teams with efficient vulnerability detection and streamlined secure coding practices, offering comprehensive language support and seamless integration with development tools.

OpenText Static Application Security Testing enhances software security during development by accurately identifying vulnerabilities with minimal false positives. It integrates seamlessly with IDEs and CI/CD pipelines, making it highly efficient for early detection of security issues. Users benefit from its easy setup, clear documentation, and centralized portal for managing security findings. Despite facing challenges like high costs and complex configurations for certain languages, its role in facilitating compliance and streamlining secure coding processes is indispensable. Improvements are needed in areas such as outdated design, language support, and integration capabilities to meet evolving user expectations.

What features does OpenText Static Application Security Testing offer?

Seamless IDE Integration: Integrates effortlessly with development environments for real-time feedback.
Comprehensive Language Support: Covers a wide range of programming languages, enhancing detection accuracy.
Centralized Security Portal: Provides a streamlined interface for managing vulnerabilities.

What benefits and ROI should users consider?

Enhanced Security: Identifies vulnerabilities early, preventing potential breaches.
Time Efficiency: Automates processes and speeds up remediation efforts.
Compliance Facilitation: Assists in adhering to security standards and regulations.

Organizations across diverse sectors implement OpenText Static Application Security Testing primarily to secure applications during development phases. Its integration with tools like GitLab, Jenkins, and Azure DevOps ensures a robust security pipeline. By combining with Sonatype Nexus, secure code, and library management is achieved effectively.

OpenText

Snyk excels in integrating security within the development lifecycle, providing teams with an AI Trust Platform that combines speed with security efficiency, ensuring robust AI application development.

Snyk empowers developers with AI-ready engines offering broad coverage, accuracy, and speed essential for modern development. With AI-powered visibility and security, Snyk allows proactive threat prevention and swift threat remediation. The platform supports shifts toward LLM engineering and AI code analysis, enhancing security and development productivity. Snyk collaborates with GenAI coding assistants for improved productivity and AI application threat management. Platform extensibility supports evolving standards with API access and native integrations, ensuring comprehensive and seamless security embedding in development tools.

What are Snyk's standout features?

Simplicity and Integration: Easy to integrate across platforms like GitLab, GitHub, and Jira.
Comprehensive Vulnerability Database: Offers accurate reporting for effective vulnerability management.
Developer-Friendly Design: Supports multiple programming languages, appealing to developers.
Automation and Flexibility: Enhances workflow efficiency with automated capabilities.

What benefits can users expect?

Efficiency in Vulnerability Detection: Streamlines prioritization and remediation processes.
Cost-Effectiveness: Offers a competitive pricing model compared to alternatives.
Enhanced Workflow: Integration with DevOps tools improves development processes.

Industries leverage Snyk for security in CI/CD pipelines by automating checks for dependency vulnerabilities and managing open-source licenses. Its Docker and Kubernetes scanning capabilities enhance container security, supporting a proactive security approach. Integrations with platforms like GitHub and Azure DevOps optimize implementation across diverse software environments.