"This product is always evolving, and they listen to the customers."
"GitLab integrates well with other platforms."
"It speeds up our development, it's faster, safer, and more convenient."
"GitLab is very useful for pipelines, continuous integration, and continuous deployment. It is also stable."
"We like that we can create branches and then the branches can be reviewed and you can mesh those branches back. You can independently work with your own branch, you don't need to really control the core of other people."
"GitLab offers a good interface for doing code reviews between two colleagues."
"A user friendly solution."
"We like that we can have an all-encompassing product and don't have to implement different solutions."
"It is really accurate and the rate of false positives is very low."
"The setup is usually straightforward."
"I would say that it is stable, as I am not aware of any major issues."
"When it is set up properly, it can do scanning on web apps with multiple engines automatically."
"It would be better if there weren't any outages. There are occasions where we usually see a lot of outages using GitLab. It happens at least once a week or something like that. Whatever pipelines you're running, to check the logs, you need to have a different set of tools like Argus or something like that. If you have pipelines running on GitLab, you need a separate service deployed to view the logs, which is kind of a pain. If the logs can be used conveniently on GitLab, that would be definitely helpful. I'm not talking about the CI/CD pipelines but the back-end services and microservices deployed over GitLab. To view the logs for those microservices, you need to have separate log viewers, which is kind of a pain."
"It could have more security integrations and the ability to check the vulnerability of the code. I don't think it is a responsibility of Gitlab, but it would be nice to have more options to integrate with."
"The only thing our company is really waiting on in terms of features is the development of metrics."
"I would like to see better integration with project management tools such as Jira."
"We are having a few problems integrating with Jira at the moment, which is something that our IT department is investigating."
"Reporting could be improved."
"In the free version, when a merge request is raised, there is no way to enforce certain rules. We can't enforce that this merge request must be reviewed or approved by two or three people in the team before it is pushed to the master branch. That's why we are exploring using some agents."
"The solution could improve by providing more integration into the CI/CD pipeline, an autocomplete search tool, and more supporting documentation."
"Integration could be better."
"Support response times are slow and can be improved."
"The enterprise interface is too simple. It should be more customizable."
"AppSpider could improve in the area of integration. They need to add more integration opportunities."
"The dashboard and interface are crucial and they need some improvement."
"The tech support is responsive but issues remain unresolved."
Earn 20 points
GitLab is a single application with features for the whole software development and operations (DevOps) lifecycle.
SPAs, APIs, mobile—the evolution of application technology is measured in months, not years. Is your web application security testing tool designed to keep up? AppSpider lets you collect all the information needed to test all the apps so that you aren’t left with gaping application risks.
Our dynamic application security testing (DAST) solution crawls to the deepest, darkest corners of even the most modern and complex apps to effectively test for risk and get you the insight you need to remediate faster. With AppSpider on your side (or, rather, all of your sides), you’ll be able to scan all the apps today and always be ready for whatever comes next.
GitLab is ranked 5th in Application Security Testing (AST) with 16 reviews while Rapid7 AppSpider is ranked 16th in Application Security Testing (AST) with 4 reviews. GitLab is rated 8.2, while Rapid7 AppSpider is rated 7.6. The top reviewer of GitLab writes "Provides or mandates quantitative code into the Master". On the other hand, the top reviewer of Rapid7 AppSpider writes "Scan web applications for vulnerabilities and automate testing with various engines". GitLab is most compared with Microsoft Azure DevOps, TeamCity, Tekton, Sonatype Nexus Lifecycle and GoCD, whereas Rapid7 AppSpider is most compared with Rapid7 InsightAppSec, OWASP Zap, Netsparker by Invicti, Acunetix by Invicti and Checkmarx. See our GitLab vs. Rapid7 AppSpider report.
See our list of best Application Security Testing (AST) vendors.
We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.