No more typing reviews! Try our Samantha, our new voice AI agent.

InfrOS on Nimbus vs Snyk comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

InfrOS on Nimbus
Ranking in Cloud Management
38th
Average Rating
10.0
Reviews Sentiment
2.2
Number of Reviews
2
Ranking in other categories
Operating Systems (OS) for Business (36th)
Snyk
Ranking in Cloud Management
14th
Average Rating
8.2
Reviews Sentiment
7.3
Number of Reviews
51
Ranking in other categories
Application Performance Monitoring (APM) and Observability (21st), Application Security Tools (7th), Static Application Security Testing (SAST) (5th), GRC (6th), Vulnerability Management (21st), Container Security (7th), Software Composition Analysis (SCA) (2nd), Software Development Analytics (2nd), Cloud Security Posture Management (CSPM) (17th), DevSecOps (3rd), Application Security Posture Management (ASPM) (2nd), AI Security (10th)
 

Featured Reviews

reviewer2801622 - PeerSpot reviewer
FinOps Lead at a computer software company with 201-500 employees
Infrastructure has been optimized and pricing for CI/CD workloads is now forecast with confidence
I use this solution to optimize our infrastructure I have observed improvements in CI/CD infrastructure optimization, designing AI-native workloads, exploring pricing alternatives, and forecasting. The pricing simulator is a valuable feature. There is room for improvement in the Github…
Abhishek-Goyal - PeerSpot reviewer
Software Engineer at a computer software company with 11-50 employees
Improves security posture by actively reducing critical vulnerabilities and guiding remediation
Snyk's main features include open-source vulnerability scanning, code security, container security, infrastructure as code security, risk-based prioritization, development-first integration, continuous monitoring and alerting, automation, and remediation. The best features I appreciate are the vulnerability checking, vulnerability scanning, and code security capabilities, as Snyk scans all open-source dependencies for known vulnerabilities and helps with license compliance for open-source components. Snyk integrates into IDEs, allowing issues to be caught as they appear in the code dynamically and prioritizes risk while providing remediation advice. Snyk provides actionable remediation advice on where vulnerabilities can exist and where code security is compromised, automatically scanning everything and providing timely alerts. Snyk has positively impacted my organization by improving the security posture across all software repositories, resulting in fewer critical vulnerabilities, more confidence in overall product security, and faster security compliance for project clients. Snyk has helped reduce vulnerabilities significantly. Initially, the repository had 17 to 31 critical and high vulnerabilities, but Snyk has helped manage them down to just five vulnerabilities, which are now lower and not high or critical.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I have observed improvements in CI/CD infrastructure optimization, designing AI-native workloads, exploring pricing alternatives, and forecasting."
"Using InfrOS accelerates the process of migration planning and execution."
"It has a nice dashboard where I can see all the vulnerabilities and risks that they provided. I can also see the category of any risk, such as medium, high, and low. They provide the input priority-wise. The team can target the highest one first, and then they can go to medium and low ones."
"We went from 15 vulnerabilities in it to four or five, and those four or five were un-upgradable and we were not affected by them."
"Snyk performs software composition analysis (SCA) similar to other expensive tools."
"Snyk is a good tool that provides equivalent security standards compared to other expensive tools."
"We have integrated it into our software development environment. We have it in a couple different spots. Developers can use it at the point when they are developing. They can test it on their local machine. If the setup that they have is producing alerts or if they need to upgrade or patch, then at the testing phase when a product is being built for automated testing integrates with Snyk at that point and also produces some checks."
"Snyk provides a lot of information on vulnerabilities, the packages being used, and their dependencies, giving good insight into the security of those packages."
"Based on all our products, including Snyk, we have seen a 50 percent reduction in the amount of time it takes to fix problems."
"From a compliance and visibility reporting perspective, the fact that it can be applicable for multi-cloud environments is very helpful."
 

Cons

"I would really like to have features that will help me analyze my usage on existing environments in the cloud and suggest architectural optimization improvements."
"There is room for improvement in the Github connection."
"You need to go to the tool, export it as a CSV, and then find it, which is ridiculous."
"I think they could improve the feature for automatic fixing of security breaches."
"All such tools should definitely improve the signatures in their database. Snyk is pretty new to the industry."
"Then there's the issue of their support. It's not very good, to be honest, and it hasn't been the best experience to deal with them."
"The tool's initial use is complex."
"We would like to have upfront knowledge on how easy it should be to just pull in an upgraded dependency, e.g., even introduce full automation for dependencies supposed to have no impact on the business side of things. Therefore, we would like some output when you get the report with the dependencies. We want to get additional information on the expected impact of the business code that is using the dependency with the newer version. This probably won't be easy to add, but it would be helpful."
"Offering API access in the lower or free open-source tiers would be better. That would help our customers. If you don't have an enterprise plan, it becomes challenging to integrate with the rest of the systems. Our customers would like to have some open-source integrations in the next release."
"Right now, we receive too many high vulnerabilities. If we enable notifications, then we just get a lot of spam message."
 

Pricing and Cost Advice

Information not available
"Presently, my company uses an open-source version of the solution. The solution's pricing can be considered quite reasonable owing to the features they offer."
"We are using the open-source version for the scans."
"The solution is less expensive than Black Duck."
"Pricing-wise, it is not expensive as compared to other tools. If you have a couple of licenses, you can scan a certain number of projects. It just needs to be attached to them."
"The license model is based on the number of contributing developers. Snyk is expensive, for a startup company will most likely use the community edition, while larger companies will buy the licensed version. The price of Snyk is more than other SLA tools."
"The pricing is acceptable, especially for enterprises. I don't think it's too much of a concern for our customers. Something like $99 per user is reasonable when the stakes are high."
"You can get a good deal with Snyk for pricing. It's a little expensive, but it is worth it."
"It's good value. That's the primary thing. It's not cheap-cheap, but it's good value."
report
Use our free recommendation engine to learn which Cloud Management solutions are best for your needs.
902,894 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
No data available
Financial Services Firm
13%
Manufacturing Company
11%
Computer Software Company
9%
Comms Service Provider
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
By reviewers
Company SizeCount
Small Business20
Midsize Enterprise10
Large Enterprise23
 

Questions from the Community

What needs improvement with InfrOS on Nimbus?
I would really like to have features that will help me analyze my usage on existing environments in the cloud and suggest architectural optimization improvements.
What is your primary use case for InfrOS on Nimbus?
I am a CloudOps consultant, and I use this product in my consultancy. When a client plans to migrate an app or a system to the cloud, I use InfrOS to analyze the business logic of the system with t...
How does Snyk compare with SonarQube?
Snyk does a great job identifying and reducing vulnerabilities. This solution is fully automated and monitors 24/7 to find any issues reported on the internet. It will store dependencies that you a...
What needs improvement with Snyk?
There are a lot of false positives that need to be identified and separated. The inclusion of AI to remove false positives would be beneficial. So far, I've not seen any AI features to enhance vuln...
What is your primary use case for Snyk?
I use Snyk ( /products/snyk-reviews ) in the DevOps pipeline to identify vulnerabilities before deploying the application. It integrates with Jenkins ( /products/jenkins-reviews ).
 

Comparisons

 

Also Known As

No data available
Fugue, Snyk AppRisk
 

Overview

 

Sample Customers

Information Not Available
StartApp, Segment, Skyscanner, DigitalOcean, Comic Relief
Find out what your peers are saying about InfrOS on Nimbus vs. Snyk and other solutions. Updated: June 2026.
902,894 professionals have used our research since 2012.