Try our new research platform with insights from 80,000+ expert users

GitLab vs NowSecure comparison

GitLab and NowSecure are both solutions in the Static Application Security Testing (SAST) category. GitLab is ranked #7 with an average rating of 8.6, while NowSecure is ranked #38. GitLab holds a 2.4% mindshare in SAST, compared to NowSecure’s 0.2% mindshare. Additionally, 97% of GitLab users are willing to recommend the solution, compared to 100% of NowSecure users who would recommend it.
GitLab
Read 85 GitLab reviews
  • 19,768 Views
  • 2,965 Comparison Views
97% willing to recommend
NowSecure
Read 1 NowSecure review
  • 394 Views
  • 374 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between GitLab and NowSecure based on real PeerSpot user reviews.

Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Static Application Security Testing (SAST).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Static Application Security Testing (SAST) Report (Updated: August 2025).
Buyer's Guide
Static Application Security Testing (SAST)
August 2025
Download the complete report
Helped 865,295 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

GitLab
Ranking in Static Application Security Testing (SAST)
7th
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
85
Ranking in other categories
Application Security Tools (11th), Build Automation (1st), Release Automation (2nd), Rapid Application Development Software (10th), Software Composition Analysis (SCA) (5th), Enterprise Agile Planning Tools (2nd), Fuzz Testing Tools (2nd), DevSecOps (1st)
NowSecure
Ranking in Static Application Security Testing (SAST)
38th
Average Rating
7.0
Reviews Sentiment
7.2
Number of Reviews
1
Ranking in other categories
Mobile App Testing Tools (18th)
 

Mindshare comparison

As of August 2025, in the Static Application Security Testing (SAST) category, the mindshare of GitLab is 2.4%, up from 2.4% compared to the previous year. The mindshare of NowSecure is 0.2%, up from 0.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Static Application Security Testing (SAST)
 

Featured Reviews

Rohit Kesharwani - PeerSpot reviewer
Improved agility and time to market with CI/CD enhancements
The CI/CD pipelines in GitLab are highly valuable. Another important feature is the single source of repository, allowing efficient repository management and source code management. GitLab provides manageability by allowing us to manage source code effectively through separate repositories. Additionally, GitLab enables the creation of individual CI/CD pipelines for each repository, making software more agile. By integrating GitLab as a DevOps platform, we have enhanced agility, improved our time to market, and different teams can work collaboratively on various projects.
Read full review
AN
Scalable and reliable, but dynamic analysis needs improvement
I would advise others when testing using NowSecure to do secondary tests with other tools. For example, set it up in the local environment and recheck what the results of the reports are. Since the dynamic results are less accurate, I would suggest using static analysis. I rate NowSecure a seven out of ten.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The CI/CD process is very efficient."
"GitLab's best features are maintenance, branch integration, and development infrastructure."
"It is a speedy platform compared to the others I have used. I have also enjoyed using the platform as this solution offers a good user experience."
"It's a great toolbox where the CI/CD pipeline is the fundamental component, but there are so many other features that you can pull from, which makes it a very powerful tool. My current client is using AWS, and they can, of course, use AWS CodePipeline, but GitLab is much more mature than that, and it also gives you the freedom to decide to go to another platform or have a multi-cloud strategy and things like that. That freedom for me is also very valuable."
"The solution's most valuable features are pipelines."
"GitLab is being used as a repository for our codebase and it is a one stop DevOps tool we use in our team."
"GitLab's best features are continuous integration and fast deployment."
"The solution is stable."
More GitLab pros
"The most valuable feature is the ability to download an application without actually putting in the APK. It gives us an option to put the APK in if we want to but we can download it from the App Store and Play Store."
 

Cons

"Their RBAC is role-based access, which is fine but not very good."
"Merge conflicts and repository maintenance could improve. If there is someone new to the system they would not know if there is a conflict."
"We are having a few problems integrating with Jira at the moment, which is something that our IT department is investigating."
"It has fewer options, and its UI is not so user-friendly."
"We would like to have easier tutorials. Their tutorials are too technical for a user to understand. They should be more detailed but less technical."
"In the free version, when a merge request is raised, there is no way to enforce certain rules. We can't enforce that this merge request must be reviewed or approved by two or three people in the team before it is pushed to the master branch. That's why we are exploring using some agents."
"The price of GitLab could improve, it is high."
"As a partner, sometimes it's difficult to get support. They have a really complicated procedure for their support."
More GitLab cons
"In this solution, there are two kinds of testing, static analysis, and dynamic analysis. There needs some improvement in testing with dynamic analysis because I have found it is not accurate"
 

Pricing and Cost Advice

"Its price is fine. It is on the cheaper side and not expensive. You have to pay additionally for GitLab CI/CD minutes. Initially, we used the free version. When we ran out of GitLab minutes, we migrated to the paid version."
"The solution's standard license is paid annually. They have changed the pricing model and it used to be better. There is a free version available."
"GitLab's pricing is good compared to others on the market."
"As I work in a vast enterprise, I'm unsure about the licensing cost for GitLab. It's the management team that takes care of that."
"We are using the open-source version."
"I'm not aware of the licensing costs because those were covered by the customer."
"GitLab is cheap."
"This is an open-source solution."
More GitLab pricing and cost advice
Information not available
report
See which vendors are best for you
Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.
See recommendations
865,295 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
14%
Computer Software Company
14%
Government
11%
Manufacturing Company
10%
Financial Services Firm
15%
Retailer
12%
Manufacturing Company
12%
Insurance Company
12%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about GitLab?
I find the features and version control history to be most valuable for our development workflow. These aspects provide us with a clear view of changes and help us manage requests efficiently.
See all answers
What is your experience regarding pricing and costs for GitLab?
The pricing and cost are on par with other tools and are neither too expensive nor cheap.
See all answers
What needs improvement with GitLab?
Regarding improvements, making task management is something that GitLab can potentially make easier, similar to what DevOps or Jira does.
See all answers
Ask a question
Earn 20 points
 

Comparisons

Microsoft Azure DevOps vs GitLab Logo
Microsoft Azure DevOps vs GitLab
Compared 31% of the time
GitHub CoPilot vs GitLab Logo
GitHub CoPilot vs GitLab
Compared 14% of the time
SonarQube Server (formerly SonarQube) vs GitLab Logo
SonarQube Server (formerly SonarQube) vs GitLab
Compared 5% of the time
TeamCity vs GitLab Logo
TeamCity vs GitLab
Compared 5% of the time
Tekton vs GitLab Logo
Tekton vs GitLab
Compared 5% of the time
More GitLab Competitors
Checkmarx One vs NowSecure Logo
Checkmarx One vs NowSecure
Compared 35% of the time
Data Theorem API Secure vs NowSecure Logo
Data Theorem API Secure vs NowSecure
Compared 35% of the time
Veracode vs NowSecure Logo
Veracode vs NowSecure
Compared 30% of the time
More NowSecure Competitors
 

Product Reports

Buyer's Guide
GitLab
August 2025
GitLab reportDownload GitLab product report
Buyer's Guide
Mobile App Testing Tools
August 2025
NowSecure reportDownload NowSecure product report
 

Also Known As

Fuzzit
No data available
 

Overview

GitLab offers a secure and user-friendly platform for CI/CD pipeline management, code repository control, and collaboration, enhancing development speed and efficiency. It facilitates automation with extensive customization and tool integration, ideal for DevOps processes.

GitLab supports source code management, version control, and collaborative development. It's frequently used in CI/CD processes to automate builds and deployments while integrating DevOps practices. GitLab allows companies to manage repositories, automate pipelines, conduct code reviews, and maintain development lifecycles. The platform supports infrastructure and configuration management, enabling efficient code collaboration, deployment automation, and comprehensive repository handling. Many organizations commit and deploy developed code using GitLab's capabilities.

What are GitLab's most valuable features?
  • CI/CD Pipeline Management: Streamlines development through automated testing and deployment.
  • User-Friendly Interface: Ensures ease of collaboration and task automation.
  • Code Merging and Branching: Facilitates smooth code integration and version control.
  • Security Platform: Provides strong security features for safe development.
  • Tool Integration: Enhances functionality with diverse tool integration.
What benefits should users evaluate?
  • Development Speed: Accelerates processes through automation.
  • Collaboration Ease: Simplifies team interactions and workflow.
  • Customization Options: Offers extensive personalization for specific needs.
  • Comprehensive Documentation: Provides detailed guidance for users.
  • Secure Platform: Maintains integrity with robust security features.

In specific industries, GitLab serves as a backbone for source code management and CI/CD implementation. Companies leverage its capabilities for infrastructure management and deployment automation, thus streamlining project delivery timelines. Its ability to handle configuration management and code repositories effectively aids in maintaining development lifecycles, making it a preferred choice for organizations committed to enhancing their DevOps practices.

GitLab

NowSecure experts have conducted advanced pen testing for some of the world's most demanding organizations - including banks, insurance companies, government agencies, healthcare organizations, retail conglomerates, high-tech businesses, and more. Mobile apps are prone to sensitive data leakages and attacks, yet a manual test for just one app can take several weeks. To enable faster, more frequent testing, we built a test engine that successfully automates repeatable and time-consuming mobile appsec testing, remediation and reporting tasks. The result - the foundation of the NowSecure platform, which significantly reduces testing time and costs without compromising full depth of security coverage.

NowSecure
 

Sample Customers

1. NASA  2. IBM  3. Sony  4. Alibaba  5. CERN  6. Siemens  7. Volkswagen  8. ING  9. Ticketmaster  10. SpaceX  11. Adobe  12. Intuit  13. Autodesk  14. Rakuten  15. Unity Technologies  16. Pandora  17. Electronic Arts  18. Nordstrom  19. Verizon  20. Comcast  21. Philips  22. Deutsche Telekom  23. Orange  24. Fujitsu  25. Ericsson  26. Nokia  27. General Electric  28. Cisco  29. Accenture  30. Deloitte  31. PwC  32. KPMG
Vaporstream, FIS, MEA Financial, Silent Circle, Capital One, Citi, EY, EMC, Emerson, Kaiser Permanente, The Home Depot, Humana, Shell, Kellogg's, TD Bank, VMware
Buyer's Guide
Static Application Security Testing (SAST)
August 2025
Download Free Report
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Static Application Security Testing (SAST). Updated: August 2025.
DOWNLOAD NOW
865,295 professionals have used our research since 2012.
See our list of best Static Application Security Testing (SAST) vendors.

We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.