Try our new research platform with insights from 80,000+ expert users

GitGuardian Platform vs JFrog DevOps Cloud Platform comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Jul 28, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

GitGuardian Platform
Ranking in Software Supply Chain Security
4th
Ranking in DevSecOps
3rd
Average Rating
8.8
Reviews Sentiment
7.3
Number of Reviews
32
Ranking in other categories
Application Security Tools (8th), Static Application Security Testing (SAST) (4th), Data Loss Prevention (DLP) (6th), Threat Intelligence Platforms (6th), Non-Human Identity Management (NHIM) (4th)
JFrog DevOps Cloud Platform
Ranking in Software Supply Chain Security
16th
Ranking in DevSecOps
12th
Average Rating
8.0
Reviews Sentiment
7.2
Number of Reviews
3
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of August 2025, in the Software Supply Chain Security category, the mindshare of GitGuardian Platform is 2.3%, down from 2.9% compared to the previous year. The mindshare of JFrog DevOps Cloud Platform is 0.7%. It is calculated based on PeerSpot user engagement data.
Software Supply Chain Security
 

Featured Reviews

Ney Roman - PeerSpot reviewer
Facilitates efficient secret management and improves development processes
Regarding the exceptions in GitGuardian Platform, we know that within the platform we have a way to accept a path or a directory from a repository, but it is not that visible at the very beginning. You have to figure out where to search for it, and once you have it, it is really good, but it is not that visible at the beginning. This should be made more exposed. The documentation could be better because it was not that comprehensively documented. When we started working with GitGuardian Platform, it was difficult to find some specific use cases, and we were not aware of that. It might have improved now, but at that time, it was not something we would recommend.
Fredierick Saladas - PeerSpot reviewer
Provides superior integration options and comprehensive reporting features
The product could benefit from enhanced integration capabilities with older software systems and more customizable reporting options. Improved support for mobile devices would also be advantageous, allowing team members to access the system more effectively while on the go. In the next release, we would like to see advanced analytics features, including predictive analytics to help forecast project outcomes. Additionally, a more robust mobile app with offline capabilities would be valuable for remote work scenarios.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We have definitely seen a return on investment when it finds things that are real. We have caught a couple things before they made it to production, and had they made it to production, that would have been dangerous."
"The newest addition that we appreciate about GitGuardian Platform is the ability to create a custom detector, which we built and worked with the team, and that works very effectively."
"A high number of our exposures are remediated by developers before security needs to step in, as the self-healing playbook process engages them automatically. This results in issues being resolved within minutes, saving significant effort from the security team in tracking down or communicating with developers."
"It's fantastic. We have checked a couple of other vendors and seen their results, which are quite inferior to the amount of detail that the GitGuardian Platform provides. With instantaneous notifications connected to our Slack platform, it allows us to deal quickly with incidents."
"The majority of our incidents for critical detectors and important secret types are remediated automatically or proactively by developers through GitGuardian's notification system, without security team involvement."
"What is particularly helpful is that having GitGuardian show that the code failed a check enables us to automatically pass the resolution to the author. We don't have to rely on the reviewer to assign it back to him or her. Letting the authors solve their own problems before they get to the reviewer has significantly improved visibility and reduced the remediation time from multiple days to minutes or hours. Given how time-consuming code reviews can be, it saves some of our more scarce resources."
"GitGuardian Internal Monitoring has helped increase our secrets detection rate by several orders of magnitude. This is a hard metric to get. For example, if we knew what our secrets were and where they were, we wouldn't need GitGuardian or these types of solutions. There could be a million more secrets that GitGuardian doesn't detect, but it is basically impossible to find them by searching for them."
"GitGuardian has helped to increase our security team's productivity. Now, we don't need to call the developers all the time and ask what they are working on. I feel the solution bridged the gap between our team and the developers, which is really great. I feel that we need that in our company, since some of the departments are just doing whatever and you don't know what they are doing. I think GitGuardian does a good job of bridging the gap. It saves us about 10 hours per week."
"I appreciate the features in JFrog DevOps Cloud Platform, especially the efficient file management where downloads and uploads are optimized, saving time. The storage efficiency is also great as it avoids redundancy, which is crucial for our team. It is also quite easy to use, especially for basic commands through the command line. It's straightforward for us internally, and our data is well-hosted on their servers, which makes data location and querying fast and efficient. Moving our storage to JFrog has streamlined our development cycle by eliminating duplicated data, which previously took up extra space locally. This efficiency is crucial for our workflow, although network speeds still play a significant role in performance."
"They have a professional service team that works alongside their engineering and performance teams."
"The most valuable features include task tracking and reporting capabilities."
 

Cons

"The analytics in GitGuardian Platform have a significant opportunity to better reflect the value provided to security teams and demonstrate actual activity occurring. While the self-healing capability and proactive developer actions are important features, the analytics do not provide information around this activity."
"The main disadvantage I feel they should improve upon is that apart from flagging credential issues or secrets, they could incorporate something else to make it more dynamic."
"The documentation could be improved because when we started working with GitGuardian, it was difficult to find specific use cases."
"GitGuardian's hook and dashboard scanners are the two entities. They should work together as one. We've seen several discrepancies where the hook is not being flagged on the dashboard. I still think they need to do some fine-tuning around that. We don't want to waste time."
"Right now, we are waiting for improvement in the RBAC support for GitGuardian."
"I'm excited about the possibility of Public Postman scanning being integrated with GitGuardian in the future. Additionally, I'm interested in exploring the potential use of honeytokens, which seems like a compelling approach to lure and identify attackers."
"For some repositories, there are a lot of incidents. For example, one repository says 255 occurrences, so I assume these are 255 alerts and nobody is doing anything about them. These could be false positives. However, I cannot assess it correctly, because I haven't been closing these false positives myself. From the dashboard, I can see that for some of the repositories, there have been a lot of closing of these occurrences, so I would assume there are a lot of false positives. A ballpark estimate would be 60% being false positives. One of the arguments from the developers against this tool is the number of false positives."
"Automated Jira tickets would be fantastic. At the moment, I believe we have to go in and click to create a Jira ticket. It would be nice to automate."
"We have encountered stability issues lately, particularly with frequent 500 internal server errors. Despite efforts from our DevOps team to adjust settings, these issues persist, affecting our workflow, especially with machine learning data uploads. Overall, while it's beneficial for storage and accessibility, stability issues need improvement for seamless operations. The occasional occurrence of internal server errors takes several minutes to resolve on their own and can disrupt workflows. Another concern is that sometimes files appear to be successfully uploaded, but then they cannot be downloaded, with no error message indicating the issue during the upload process. This inconsistency needs to be addressed by JFrog to ensure reliable functionality for users like us."
"The product could benefit from enhanced integration capabilities with older software systems and more customizable reporting options."
"Our locations are in different environments, so the remote server takes time to catch up, causing replication delays. The engineering team suggested that this issue would be resolved, but I'm not sure if it has been addressed yet. This is more of a feature enhancement that we suggested."
 

Pricing and Cost Advice

"I am only aware of the base price. I do not know what happened with our purchasing team in discussions with GitGuardian. I was not privy to the overall contract, but in terms of the base MSRP price, I found it reasonable."
"I compared the solution to a couple of other solutions, and I think it is very competitively priced."
"It's competitively priced compared to others. Overall, the secret detection sector is expensive, but we are very happy with the value we get."
"The pricing and licensing are fair. It isn't very expensive and it's good value."
"We don't have a huge number of users, but its yearly rate was quite reasonable when compared to other per-seat solutions that we looked at... Having a free plan for a small number of users was really great. If you're a small team, I don't see why you wouldn't want to get started with it."
"It's a little bit expensive."
"It could be cheaper. When GitHub secrets monitoring solution goes to general access and general availability, GitGuardian might be in a little bit of trouble from the competition, and maybe then they might lower their prices. The GitGuardian solution is great. I'm just concerned that they're not GitHub."
"GitGuardian is on the pricier side."
"Regarding pricing, I focus on the platform's interface and user communication rather than costs."
"The product pricing is competitive but worth negotiating for volume discounts or longer-term contracts."
report
Use our free recommendation engine to learn which Software Supply Chain Security solutions are best for your needs.
865,384 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Government
18%
Computer Software Company
18%
Financial Services Firm
7%
Comms Service Provider
7%
No data available
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about GitGuardian Internal Monitoring ?
It's also worth mentioning that GitGuardian is unique because they have a free tier that we've been using for the first twelve months. It provides full functionality for smaller teams. We're a smal...
What is your experience regarding pricing and costs for GitGuardian Internal Monitoring ?
It's competitively priced compared to others. Overall, the secret detection sector is expensive, but we are happy with the value we get.
What needs improvement with GitGuardian Internal Monitoring ?
GitGuardian Platform does what it is designed to do, but it still generates many false positives. We utilize the automated playbooks from GitGuardian Platform, and we are enhancing them. We will pr...
What needs improvement with JFrog DevOps Cloud Platform?
The product could benefit from enhanced integration capabilities with older software systems and more customizable reporting options. Improved support for mobile devices would also be advantageous,...
What advice do you have for others considering JFrog DevOps Cloud Platform?
Overall, the solution has been a great asset to our team. I advise investing time in the initial setup and training to leverage its capabilities fully. Ensure you clearly understand your needs and ...
What is your experience regarding pricing and costs for JFrog DevOps Cloud Platform?
The product pricing is competitive but worth negotiating for volume discounts or longer-term contracts. Licensing options are flexible, but ensure you understand the terms and any additional costs ...
 

Also Known As

GitGuardian Internal Monitoring, GitGuardian Public Monitoring
No data available
 

Overview

 

Sample Customers

Widely adopted by developer communities, GitGuardian is used by over 600 thousand developers and leading companies, including Snowflake, Orange, Iress, Mirantis, Maven Wave, ING, BASF, and Bouygues Telecom.
Information Not Available
Find out what your peers are saying about GitGuardian Platform vs. JFrog DevOps Cloud Platform and other solutions. Updated: July 2025.
865,384 professionals have used our research since 2012.