"It speeds up our development, it's faster, safer, and more convenient."
"GitLab integrates well with other platforms."
"We like that we can create branches and then the branches can be reviewed and you can mesh those branches back. You can independently work with your own branch, you don't need to really control the core of other people."
"It is very useful for reviews. We are using branch merging operations and full reset operations. It is also very useful for merging our code and tracking another branch. The graph diagrams of Git are very useful. Its interface is straightforward and not too complex for us."
"The most valuable features of Gitlab are integration with CIE and the ability to rapidly deploy solutions, projects, and applications. It is very easy to use, and there are no complaints."
"I like that it's easy to deploy our services over GitLab. The customer support is also good with a really active community. You have a lot of support that you can get online with your stack. That is probably one of the benefits of using GitLab. It's also really fast."
"A user friendly solution."
"GitLab offers a good interface for doing code reviews between two colleagues."
"I have found the detection of vulnerabilities tool thorough with good results and the graphical display output to be wonderful and full of colors. It allows many types of outputs, such as bar and chart previews."
"The feature that I have found most valuable is the progressive scan. It is good. It's done in 24 hours."
"It is easy to use."
"It is a very stable solution."
"The interface is user-friendly and easy to understand."
"In the free version, when a merge request is raised, there is no way to enforce certain rules. We can't enforce that this merge request must be reviewed or approved by two or three people in the team before it is pushed to the master branch. That's why we are exploring using some agents."
"It should be used by a larger number of people. They should raise awareness."
"Based on what I know so far, its integration with Kubernetes is not so good. We have to develop many things to make it work. We have to acquire third-party components to work with Kubernetes."
"I would like to see better integration with project management tools such as Jira."
"The documentation could be improved to help newcomers better understand things like creating new branches."
"We are having a few problems integrating with Jira at the moment, which is something that our IT department is investigating."
"The only thing our company is really waiting on in terms of features is the development of metrics."
"It can be free for commercial use."
"Deployment can be complicated."
"The UI is not user-friendly and you don't have a yearly reporting facility where you can slice and dice in different jobs."
"The scanner reports a lot of false positives, which is something that needs to be improved."
"The reporting contains too many false positives."
"The virus code updates are not frequent enough."
"When comparing this solution to Veracode, Veracode has good interactive features and gives a clear understanding of what the vulnerabilities are, which error line of the vulnerability is on and what can be done. It gives interactive features, whereas this solution does not give a clear understanding of where or how to fix the problem."
GitLab is a single application with features for the whole software development and operations (DevOps) lifecycle.
GitLab is ranked 5th in Application Security Testing (AST) with 16 reviews while Qualys Web Application Scanning is ranked 9th in Application Security Testing (AST) with 4 reviews. GitLab is rated 8.2, while Qualys Web Application Scanning is rated 7.8. The top reviewer of GitLab writes "Provides or mandates quantitative code into the Master". On the other hand, the top reviewer of Qualys Web Application Scanning writes "Has a good progressive scan feature but the data server needs improvement". GitLab is most compared with Microsoft Azure DevOps, TeamCity, Tekton, Sonatype Nexus Lifecycle and GoCD, whereas Qualys Web Application Scanning is most compared with OWASP Zap, Veracode, SonarQube, PortSwigger Burp Suite Professional and Fortify WebInspect. See our GitLab vs. Qualys Web Application Scanning report.
See our list of best Application Security Testing (AST) vendors.
We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.