No more typing reviews! Try our Samantha, our new voice AI agent.

GitLab Premium vs HCL AppScan comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

GitLab Premium
Ranking in Application Security Tools
27th
Average Rating
8.2
Reviews Sentiment
5.4
Number of Reviews
5
Ranking in other categories
No ranking in other categories
HCL AppScan
Ranking in Application Security Tools
21st
Average Rating
7.6
Reviews Sentiment
5.9
Number of Reviews
44
Ranking in other categories
Static Application Security Testing (SAST) (17th), Dynamic Application Security Testing (DAST) (6th)
 

Featured Reviews

Bharadwaj Deepak Mohapatra - PeerSpot reviewer
DevOps Engineer at ENTERPRISE SYSTEM SOLUTIONS LIMITED
Have managed internal projects efficiently but face challenges with user interface and navigation
When discussing improvements for GitLab Premium, the main area is the GUI. GitHub's GUI is very good, offering many collaboration options and the ability to customize dashboards. GitHub's look and feel is superior, but GitLab Premium's dashboard is very simple. Regarding capabilities lacking in GitLab Premium, the main concern is the GUI. For example, in GitHub, there is a right side profile where settings can be directly accessed, and there is a direct section for developer mode with clear segregation. In GitLab Premium, when accessing users, confusion sometimes arises between root user and main user. There is an option for groups, but it is not direct. When clicking on groups, it goes to another section where groups must be found. This hierarchy could be more straightforward and direct. The biggest drawbacks of GitLab Premium are GUI and configuration. GUI is the primary concern, but other aspects are good.
Ravi Khanchandani - PeerSpot reviewer
Founder Director at Techsa Services
Has improved identification of encryption and authentication issues across cloud and on-prem applications
During the learning curve of onboarding HCL AppScan, we learned that HCL has altered the portfolio and now offers HCL AppScan 360, which has a much better look and feel with an improved user interface. However, there is one feature called SCA, which stands for Software Composition Analysis, that could be improved. When I'm doing an application scan, HCL AppScan has the ability to generate information about what components are in use. For example, if I'm scanning a web application, it shows me the various components being used. It tells me whether I have Java libraries, .NET frameworks, or other log management libraries such as Log4j, and what versions of those specific components are present. I would like to see more detailed reports from the tool. Currently, you can find out the components belonging to a specific software, but if detailed reporting became available, you would be in a better position to identify vulnerabilities. For instance, I could identify that I had the Log4j vulnerability and know that I need to fix my application accordingly. If they add the features I'm describing, I would consider giving them a higher rating. However, I've only been experienced with the product for three months.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"GitLab Premium is much more reliable, quicker, faster, and basically easier to operate compared to GitHub."
"The main benefits from advanced CI/CD capabilities in GitLab Premium include automation to pull and merge the codes together, and it's all done automatically."
"The biggest benefit from GitLab Premium is that both repository management systems are good, as both GitHub and GitLab are valuable, and the main advantage is that GitLab Premium has community support, making it good in all aspects for small organizations."
"I would give a rating of eleven in that case, because we never had a downtime with GitLab Premium."
"The main benefits I received from GitLab Premium are that I save money and streamline my management process of applications."
"There's extensive functionality with custom rules and a custom knowledge base."
"The product has valuable features for static and dynamic testing."
"The static scans are good, and the SaaS as well."
"The solution offers services in a few specific development languages."
"From the point of view of quality, very excellent quality, it's above all the tools that I have worked with."
"The solution is easy to install. I would rate the product's setup between six to seven out of ten. The deployment time depends on the applications that need to be scanned. We have a development and operations team to take care of the product's maintenance."
"Compared to other tools only AppScan supports special language."
"The reporting part is the most valuable feature."
 

Cons

"It is complex. It takes a good amount of time."
"The biggest drawbacks of GitLab Premium are GUI and configuration. GUI is the primary concern, but other aspects are good."
"The automation part could be improved. Nowadays AI is being actively used, and if we could integrate something like ChatGPT with GitLab Premium, it would be easier for us to check logs and debug faster."
"In terms of improvement for GitLab Premium, not necessarily GitLab Premium specifically but GitLab as a whole could enhance features on the project management side."
"I would love to see more containers. Many of the tools are great, they require an amount of configuration, setup and infrastructure. If most the applications were in a container, I think everything would be a little bit faster, because all our clients are now using containers."
"It's a little bit basic when you talk about the Web Services. If AppScan improved its maturity on Web Services testing, that would be good."
"A desktop version should be added."
"Visibility is an issue for us. Our partners were not even aware that we had an integration with AppSense."
"They could incorporate AI to enhance vulnerability detection and improve the product's reporting capabilities."
"The databases for HCL are small and have room for improvement."
"The penetration testing feature should be included."
"The depth was low, but the part that the user could miss was also diagnosed."
 

Pricing and Cost Advice

Information not available
"The product has premium pricing and could be more competitive."
"The solution is cheap."
"With the features, that they offer, and the support, they offer, AppScan pricing is on a higher level."
"I rate the product's price a seven on a scale of one to ten, where one is low, and ten is high. HCL AppScan is an expensive tool."
"I would rate the product's pricing a nine out of ten. The product's pricing is expensive compared to the features that they offer."
"Our clients are willing to pay the extra money. It is expensive."
"The tool was expensive."
"HCL AppScan is expensive."
report
Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
43%
Transportation Company
12%
Comms Service Provider
9%
Government
6%
Financial Services Firm
11%
Manufacturing Company
9%
Government
9%
Computer Software Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
By reviewers
Company SizeCount
Small Business14
Midsize Enterprise6
Large Enterprise31
 

Questions from the Community

What needs improvement with GitLab Premium?
It could be better, but now that we have migrated to Siemens Energy, GitLab Premium is being actively looked after by another team. We are just making sure that GitLab Premium administration is bei...
What advice do you have for others considering GitLab Premium?
We were on the desktop, and now GitLab Premium is on cloud. I am not really sure about the purchase process for GitLab Premium. I am a GitLab Premium end-user. I give this product a rating of eight...
What is your experience regarding pricing and costs for GitLab Premium?
GitLab Premium is affordable in terms of pricing, while GitHub is a bit pricier. If working with a much more complex and vast organization at the enterprise level, GitHub would be the choice. If op...
What needs improvement with HCL AppScan?
During the learning curve of onboarding HCL AppScan, we learned that HCL has altered the portfolio and now offers HCL AppScan 360, which has a much better look and feel with an improved user interf...
What is your primary use case for HCL AppScan?
I'm currently working with BigFix and HCL AppScan. At least three people in my company are using HCL AppScan. Since we are a reseller, we run it in both lab environments and live production applica...
What is your experience regarding pricing and costs for HCL AppScan?
AppScan is considered more cost-effective than Veracode, although I have not updated the exact pricing details. Companies often choose based on budget constraints, with Veracode being on the higher...
 

Comparisons

No data available
 

Also Known As

No data available
IBM Security AppScan, Rational AppScan, AppScan
 

Overview

 

Sample Customers

Information Not Available
Essex Technology Group Inc., Cisco, West Virginia University, APIS IT
Find out what your peers are saying about GitLab Premium vs. HCL AppScan and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.