Try our new research platform with insights from 80,000+ expert users

GitLab vs Mend.io comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 8, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.6
GitLab improves ROI by increasing efficiency, reducing deployment time, and enhancing DevOps through cost-saving, automation, and vulnerability management.
Sentiment score
7.9
Mend.io enhances security and efficiency, managing open-source components, reducing vulnerabilities, boosting compliance, and increasing potential sales growth.
Migrating to GitLab is bringing time-saving benefits, and everything is easier to automate.
We have saved time significantly, reducing deployment time from four hours to five minutes per deployment.
Mend.io has provided a good return on investment by significantly reducing vulnerabilities.
 

Customer Service

Sentiment score
6.8
GitLab's support varies by license; paid users praise responsiveness, while free version users rely on community forums and documentation.
Sentiment score
7.5
Mend.io provides highly responsive customer service with excellent technical support and proactive communication, despite minor reseller process challenges.
We have rarely needed to escalate issues to technical support since GitLab usually runs seamlessly.
I have interacted with architects for some advice during the implementation, and they were prompt in their response.
I have had meetings where they taught me, explained things, and provided guidance for starting from scratch.
They prioritize providing the best experience to large organizations like ours, belonging to the Fortune 100.
 

Scalability Issues

Sentiment score
7.4
GitLab's scalable container architecture supports diverse environments, flexible deployment, and smooth integration, despite some configuration and scaling challenges.
Sentiment score
7.8
Mend.io offers impressive scalability for large projects and users, with stable performance and effective integration with CI/CD tools.
It has all the features required for our coding and deployment needs, which makes it scalable to our changing requirements.
We're transitioning to OpenShift for future scalability with increased user numbers.
For scaling, other deployment options from GitLab's side need to be adopted.
 

Stability Issues

Sentiment score
8.2
GitLab is highly stable and reliable, with minor issues mainly under heavy load or during updates.
Sentiment score
7.7
Mend.io is generally stable and reliable, addressing occasional slowdowns swiftly, though some face pipeline integration challenges.
I have not encountered any performance or stability issues with GitLab so far.
The updates are frequent and demanding, happening at least once a week due to security reasons.
AI integration in code security tools like Mend.io is still in its early stages and relatively immature.
 

Room For Improvement

GitLab users seek improved CI/CD automation, integrations, user interface, project management, security, pricing, and support for enhanced usability.
Mend.io users desire enhanced integration, interface improvements, better scanning, customizable reports, and expanded support for tools and languages.
It would be beneficial to have a user-friendly interface for setting up these configurations, instead of just writing YAML files.
It is essential to conduct proper testing, such as unit tests and code coverage, within the SDLC pipelines.
GitLab can improve its user interface to make conflict resolution more user-friendly.
The organization decided to consolidate tools and chose Snyk since it provides multiple functionalities in one solution.
 

Setup Cost

GitLab provides flexible pricing with open-source access and paid tiers, catering to different enterprise needs and budgets.
Mend.io provides cost-effective pricing with fixed developer fees, appealing to enterprises for affordability and negotiable terms.
Even when working in other small organizations, we opted for GitLab as it was cost-efficient.
The pricing of GitLab is reasonable, aligning with what I consider to be average compared to competitors.
The price is high, and it limits user accessibility.
The cost of Mend.io is competitive, being quite low compared to others.
 

Valuable Features

GitLab excels in UI, CI/CD, code management, and integration, offering user-friendly, efficient, and scalable development and deployment features.
Mend.io streamlines governance and enhances security by efficiently detecting vulnerabilities and integrating with DevOps workflows.
As we implement automated testing and DevSecOps, it speeds up the process by forty to sixty percent.
The Ultimate version offers enhanced features for security scanning through DAST and SAST analysis, which have greatly benefitted our project workflow.
By integrating GitLab as a DevOps platform, we have enhanced agility, improved our time to market, and different teams can work collaboratively on various projects.
We find it 100% accurate in detecting vulnerabilities.
 

Categories and Ranking

GitLab
Ranking in Application Security Tools
9th
Ranking in Software Composition Analysis (SCA)
5th
Average Rating
8.6
Reviews Sentiment
7.1
Number of Reviews
84
Ranking in other categories
Build Automation (1st), Release Automation (2nd), Static Application Security Testing (SAST) (7th), Rapid Application Development Software (11th), Enterprise Agile Planning Tools (2nd), Fuzz Testing Tools (2nd), DevSecOps (3rd)
Mend.io
Ranking in Application Security Tools
17th
Ranking in Software Composition Analysis (SCA)
6th
Average Rating
8.4
Reviews Sentiment
7.3
Number of Reviews
30
Ranking in other categories
Static Code Analysis (4th), Software Supply Chain Security (2nd)
 

Mindshare comparison

As of May 2025, in the Software Composition Analysis (SCA) category, the mindshare of GitLab is 4.4%, down from 5.2% compared to the previous year. The mindshare of Mend.io is 7.8%, down from 8.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Software Composition Analysis (SCA)
 

Featured Reviews

Rohit Kesharwani - PeerSpot reviewer
Improved agility and time to market with CI/CD enhancements
The CI/CD pipelines in GitLab ( /products/gitlab-reviews ) are highly valuable. Another important feature is the single source of repository, allowing efficient repository management and source code management. GitLab provides manageability by allowing us to manage source code effectively through separate repositories. Additionally, GitLab enables the creation of individual CI/CD pipelines for each repository, making software more agile. By integrating GitLab as a DevOps platform, we have enhanced agility, improved our time to market, and different teams can work collaboratively on various projects.
meetharoon - PeerSpot reviewer
Enables smooth management of vulnerabilities and promotes a shift towards a culture of security
We have witnessed Mend.io for its high stability, consistently living up to our expectations in terms of performance and reliability. Our developers have reported very few issues and almost minimal to zero downtime, which is a critical factor for our organization to rely on Mend SCA to secure our applications. We didn't experience any major issues in the stability of the product. This level of dependability is crucial for our hundreds of development teams that need to maintain continuous integration and deployment processes without interruptions. We realize the solution's architecture is designed to support a wide range of use cases, making it suitable for organizations of varying sizes and complexities. As a SaaS (Software as a Service) offering, Mend.io eliminates the need for physical server management, which further contributes to its stability. Users can access the platform without worrying about hardware failures or maintenance issues that can affect on-premises solutions. Moreover, Mend.io's integration capabilities with existing workflows—including IDEs, repositories, and CI/CD pipelines—enhance its stability by providing a seamless user experience. This integration allows teams to incorporate security scanning into their development processes without significant disruptions, which is often a challenge with less stable solutions. Feedback from our developers and architects highlights the tool's effectiveness in reducing open-source software vulnerabilities while maintaining a streamlined development lifecycle. Our organization have experienced improved code quality and faster incident response times as a result of using Mend.io. The platform's intuitive dashboard and management views are also praised by our developers for their usability, contributing to a positive user experience. In short, Mend.io stands out as a dependable and reliable solution in the realm of software composition analysis. Its high stability, combined with robust integration capabilities and user-friendly features, makes it an excellent choice for organizations seeking to enhance their security posture while minimizing operational disruptions.
report
Use our free recommendation engine to learn which Software Composition Analysis (SCA) solutions are best for your needs.
850,900 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
22%
Financial Services Firm
12%
Computer Software Company
12%
Manufacturing Company
9%
Financial Services Firm
17%
Computer Software Company
15%
Manufacturing Company
12%
Insurance Company
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about GitLab?
I find the features and version control history to be most valuable for our development workflow. These aspects provide us with a clear view of changes and help us manage requests efficiently.
What is your experience regarding pricing and costs for GitLab?
The pricing of GitLab is reasonable, aligning with what I consider to be average compared to competitors.
What needs improvement with GitLab?
Certain features in Jira are not available in GitLab, such as the functionality to have weights at the milestone and epic levels. Hopefully, these features will be resolved with work items in GitLa...
How does WhiteSource compare with SonarQube?
Red Hat Ceph does well in simplifying storage integration by replacing the need for numerous storage solutions. This solution allows for multiple copies of replicated and coded pools to be kept, ea...
How does WhiteSource compare with Black Duck?
We researched Black Duck but ultimately chose WhiteSource when looking for an application security tool. WhiteSource is a software solution that enables agile open source security and license compl...
What do you like most about Mend.io?
The best feature is that the Mend R&D team does their due diligence for all the vulnerabilities. In case they observe any important or critical vulnerabilities, such as the Log4j-related vulner...
 

Comparisons

 

Also Known As

Fuzzit
WhiteSource, Mend SCA, Mend.io Supply Chain Defender, Mend SAST
 

Overview

 

Sample Customers

1. NASA  2. IBM  3. Sony  4. Alibaba  5. CERN  6. Siemens  7. Volkswagen  8. ING  9. Ticketmaster  10. SpaceX  11. Adobe  12. Intuit  13. Autodesk  14. Rakuten  15. Unity Technologies  16. Pandora  17. Electronic Arts  18. Nordstrom  19. Verizon  20. Comcast  21. Philips  22. Deutsche Telekom  23. Orange  24. Fujitsu  25. Ericsson  26. Nokia  27. General Electric  28. Cisco  29. Accenture  30. Deloitte  31. PwC  32. KPMG
Microsoft, Autodesk, NCR, Target, IBM, vodafone, Siemens, GE digital, KPMG, LivePerson, Jack Henry and Associates
Find out what your peers are saying about GitLab vs. Mend.io and other solutions. Updated: April 2025.
850,900 professionals have used our research since 2012.