GitHub vs Sonatype Repository Firewall comparison

You must select at least 2 products to compare!
GitHub Logo
2,224 views|926 comparisons
100% willing to recommend
Sonatype Logo
793 views|391 comparisons
100% willing to recommend
Comparison Buyer's Guide
Executive Summary

We performed a comparison between GitHub and Sonatype Repository Firewall based on real PeerSpot user reviews.

Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed GitHub vs. Sonatype Repository Firewall Report (Updated: May 2024).
771,740 professionals have used our research since 2012.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
"The most valuable feature of the solution is the version control field.""Complication free with good ability for third-party integrations.""The control is the most valuable feature as developers can work on a single code.""The code sharing and updated history are valuable features.""We've found the technical support to be very helpful.""The ease of use is valuable.""The initial setup was easy.""The Projects Tab, which shows you the todo list and the progress for projects, is very helpful."

More GitHub Pros →

"Another thing that I like about Sonatype is that if you download something today, and five days from today it becomes vulnerable, it will notify you.""The product's network and intrusion protection features are valuable. It also has rules and compliance features for security."

More Sonatype Repository Firewall Pros →

"The ticketing system is not working.""It is difficult to merge a code or restore it to an older version.""This solution could be improved if migration was fully automated to make it easy, for example, to migrate repositories into GitHub.""GitHub could add some more security features.""If you are uploading or cloning a large file, with more than 25 megs, it's pretty slow.""The solution can improve by adding video guides, official guides, or short courses that cater to beginners who are new to the system. These resources could offer step-by-step guidance on how to use GitHub, including common procedures such as pulling and committing. Currently, many of us have to resort to searching for information on how to do these tasks via Google. An official guide provided by GitHub itself would be a valuable asset to newcomers and would save them time and effort.""GitHub storage is one of the main requirements and it could improve.""From the recruiting standpoint, I would like to see email IDs and phone numbers and a brief introduction about their profile."

More GitHub Cons →

"The tool needs to improve its file systems. The product should also include zero test feature.""What I don't like is the lack of an option to pick up the phone and call someone for support. That is something they need to improve on. They need to have a professional services package, or they need to include that option with their services."

More Sonatype Repository Firewall Cons →

Pricing and Cost Advice
  • "The private repositories are free, which is very good."
  • "It is open-source. There is no license for GitHub."
  • "The price of this solution is reasonable."
  • "If there are only 10 people using a particular repository, then GitHub is free. But if we increase the number of users, we need to pay the normal charge for GitHub."
  • "We have an enterprise licensing agreement, and I am not part of the finance department so I can't say how much it costs."
  • "I haven't had to pay anything for GitHub, I use the free version."
  • "The licensing model for GitHub is user-based. Whenever the new developer joins we have to get a new license and register their ID. The overall price of the solution is reasonable."
  • "The licensing model from GitHub is very clear."
  • More GitHub Pricing and Cost Advice →

  • "The pricing is reasonable if you're a large enterprise developing code. It's not super-expensive."
  • More Sonatype Repository Firewall Pricing and Cost Advice →

    Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
    771,740 professionals have used our research since 2012.
    Questions from the Community
    Top Answer: The control is the most valuable feature as developers can work on a single code.
    Top Answer:You don't have to pay for a license if you are using the free version. It gives you all the possible features it has.
    Top Answer:The initial setup requires heavy documentation which can be challenging for new developers.
    Top Answer:The product's network and intrusion protection features are valuable. It also has rules and compliance features for security.
    Top Answer:The product helps with vulnerability and security assessment. It also helps with assessment at the configuration level.
    Average Words per Review
    Average Words per Review
    Also Known As
    Sonatype Nexus Firewall, Nexus Firewall
    Learn More
    GitHub is a web-based Git repository hosting service. It offers all of the distributed revision control and source code management (SCM) functionality of Git as well as adding its own features. Unlike Git, which is strictly a command-line tool, GitHub provides a Web-based graphical interface and desktop as well as mobile integration. It also provides access control and several collaboration features such as bug tracking, feature requests, task management, and wikis for every project.

    Sonatype Repository Firewall is a cloud-based security solution designed to safeguard your software supply chain against malicious components. It operates by meticulously scanning and evaluating each new component against customized governance policies, thereby effectively identifying and blocking potential threats before they infiltrate your development pipeline. What sets Sonatype Repository Firewall apart is its user-friendly setup, seamless integration with existing workflows, and remarkable scalability, making it suitable for software development environments of any size. Key features include blocking malicious components through behavioral analysis, malware scanning, and vulnerability assessment, as well as the ability to enforce custom governance policies. By utilizing this tool, organizations can enhance their software supply chain security, mitigate risks related to supply chain attacks, bolster compliance with industry standards, and ultimately reduce costs associated with security incidents. 

    Sample Customers
    Dominion Enterprises, NASA, Braintree, SAP, CyberAgent
    EDF, Tomitribe, Crosskey, Blackboard, Travel audience
    Top Industries
    Computer Software Company20%
    Financial Services Firm18%
    Manufacturing Company7%
    Computer Software Company13%
    Manufacturing Company11%
    Financial Services Firm11%
    Financial Services Firm33%
    Computer Software Company6%
    Manufacturing Company5%
    Company Size
    Small Business43%
    Midsize Enterprise9%
    Large Enterprise49%
    Small Business21%
    Midsize Enterprise13%
    Large Enterprise66%
    Small Business15%
    Midsize Enterprise11%
    Large Enterprise74%
    Buyer's Guide
    GitHub vs. Sonatype Repository Firewall
    May 2024
    Find out what your peers are saying about GitHub vs. Sonatype Repository Firewall and other solutions. Updated: May 2024.
    771,740 professionals have used our research since 2012.

    GitHub is ranked 12th in Application Security Tools with 74 reviews while Sonatype Repository Firewall is ranked 34th in Application Security Tools with 3 reviews. GitHub is rated 8.6, while Sonatype Repository Firewall is rated 8.4. The top reviewer of GitHub writes "Beneficial version control and continuous integration, but guides would be helpful". On the other hand, the top reviewer of Sonatype Repository Firewall writes "You will get clean code every time, and that's a great achievement". GitHub is most compared with Snyk, AWS CodeCommit, Bitbucket, Fortify on Demand and Bitbucket Server, whereas Sonatype Repository Firewall is most compared with JFrog Xray, Cisco Secure Firewall, Black Duck, Veracode and Sonatype Lifecycle. See our GitHub vs. Sonatype Repository Firewall report.

    See our list of best Application Security Tools vendors.

    We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.