GitHub and Snyk compete in the software development and security tools category. GitHub seems to have an advantage in collaboration and code management features, while Snyk excels in vulnerability detection and security integration.
Features: GitHub provides robust source code management, community support, and integrations with tools like Jenkins and Jira. Its branching capabilities facilitate collaboration. Snyk offers ease of integration, a comprehensive vulnerability database, and DevOps tools, focusing on container security and vulnerability detection.
Room for Improvement: GitHub could enhance project management, testing features, and security scalability. Better tool integration and a more intuitive UI are desired. Snyk could improve licensing compliance, expand IDE integrations, and support more languages. Users seek clearer notifications and more accurate vulnerability reporting.
Ease of Deployment and Customer Service: GitHub and Snyk are available in various cloud environments. GitHub's strong community support makes it user-friendly with less need for technical support. Snyk is praised for its technical support, though some find setup challenging.
Pricing and ROI: GitHub is free for public use, with paid options for private repositories. It's affordable but has license management challenges. Snyk offers good value with extensive security features, despite being considered expensive. Its effectiveness in vulnerability management is acknowledged as worth the investment.
The technical support from GitHub is generally good, and they communicate effectively.
Some forums help you get answers faster since you just type in your concern and see resolutions from other engineers.
I have not used GitHub's technical support extensively because there are many resources and a robust knowledge base available due to the large user community.
Our long-standing association has ensured smooth communication, resulting in favorable support experiences and satisfactory issue resolution.
Their response time aligns with their SLA commitments.
We have never had a problem with scalability, so I would rate it at least eight to nine.
GitHub is more scalable than on-prem solutions, allowing for cloud-based scaling which is beneficial for processing large workloads efficiently.
Snyk allows for scaling across large organizations, accommodating tens of thousands of applications and over 60,000 repositories.
If a skilled developer uses it, it is ten out of ten for stability.
It provides a reliable environment for code management.
GitHub is mostly stable, but there can be occasional hiccups.
When working with the CI/CD pipeline and somebody is writing the workflow file, it would be best to include the AI feature so if they write incorrect code, it will notify me about it in the same dashboard, eliminating the need to use third-party tools to review the file.
One area for improvement in GitHub could be integration with other tools, such as test management or project management tools.
I would like to see some AI functionality included in GitHub, similar to the features seen in GitLab, to enhance productivity.
It lacks the ability to select branches on its Web UI, forcing users to rely on CLI or CI/CD for that functionality.
The inclusion of AI to remove false positives would be beneficial.
As we are moving toward GenAI, we expect Snyk to leverage AI features to improve code scanning findings.
Normally, GitHub is not expensive, but it would be welcome if it reduces costs for developing countries.
The pricing of GitHub is reasonable, with the cost being around seven dollars per user per month for private repositories.
The pricing of GitHub depends on the choice of solutions, such as building one's own GitHub Runners to save money or using GitHub's Runners with extra costs.
Snyk is recognized as the cheapest option we have evaluated.
After negotiations, we received a special package with a good price point.
The pull request facility for code review.
GitHub Actions allow for creating multiple jobs that run in different stages such as build, test, and deploy, which enable better visibility and control over the deployment pipeline.
For branching, it works well, especially in an agile environment.
Our integration of Snyk into GitHub allows us to automatically scan codebases and identify issues, which has improved efficiency.
Snyk helps detect vulnerabilities before code moves to production, allowing for integration with DevOps and providing a shift-left advantage by identifying and fixing bugs before deployment.
The best feature of Snyk is the integration with our ticketing system, which is Jira.
| Product | Market Share (%) |
|---|---|
| GitHub | 0.9% |
| Snyk | 6.5% |
| Other | 92.6% |
| Company Size | Count |
|---|---|
| Small Business | 42 |
| Midsize Enterprise | 12 |
| Large Enterprise | 48 |
| Company Size | Count |
|---|---|
| Small Business | 20 |
| Midsize Enterprise | 8 |
| Large Enterprise | 21 |
Snyk's AI Trust Platform empowers developers to innovate securely in AI-driven environments, ensuring rapid and secure software development with enhanced policy governance.
Snyk’s platform integrates AI-ready engines across the software development lifecycle, offering broad coverage with high speed and accuracy essential for fast-paced coding environments. AI-driven features include visibility, prioritization, and tailored security policies that enable proactive threat prevention and quick remediation. By focusing on LLM engineering and AI code analysis, Snyk supports secure and productive development processes. The platform's partnerships, including GenAI code assistants, enhance AI application security by addressing new threats and code velocity challenges.
What are the key features of Snyk?Snyk is implemented across industries focusing on agile development and DevSecOps, enhancing software delivery speed and security. It is widely used for continuous monitoring and adherence to security and licensing standards, especially in environments relying on Docker image security and CI/CD pipeline integration.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
