GitLab vs. HCL AppScan

HCL AppScan

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
GitLab	Score 8.7 out of 10	N/A	GitLab is an intelligent orchestration platform for DevSecOps, where software teams enable AI at every stage of the software lifecycle to ship faster. The platform enables teams to automate repetitive tasks across planning, building, securing, testing, deploying, and maintaining software.	$0 per month per user
HCL AppScan	Score 4.3 out of 10	N/A	AppScan (formerly Rational AppScan) is an application security testing solution acquired by HCL Technologies from IBM in late 2018. Appscan supports both dynamic (DAST) and static (SAST) application security testing.	N/A

Pricing

GitLab

HCL AppScan

Editions & Modules

GitLab Free (self-managed): $0
GitLab Free: $0
GitLab Premium: $29
per month per user
GitLab Premium (self-managed): $29
per month per user
GitLab Ultimate: Contact Sales
GitLab Ultimate (self-managed): Contact Sales

No answers on this topic

Offerings

Pricing Offerings
GitLab	HCL AppScan
Free Trial
Yes	Yes
Free/Freemium Version
Yes	No
Premium Consulting/Integration Services
Yes	No

Entry-level Setup Fee

Optional

No setup fee

Additional Details

GitLab Credits enable flexible, consumption-based access to agentic AI capabilities in the GitLab platform, allowing you to scale AI adoption at your own pace while maintaining cost predictability. Powered by Duo Agent Platform, GitLab’s agentic AI capabilities help software teams to collaborate at AI speed, without compromising quality and enterprise security. If usage exceeds monthly allocations and overage terms are accepted, automated on-demand billing activates without service interruption, so your developers never lose access to AI capabilities they need. Real-time dashboards provide transparency into AI consumption patterns. Software teams can see usage across users, projects, and groups with granular attribution for cost allocation. Automated threshold alerts facilitate proactive planning. Advanced analytics deliver trending, forecasting, and FinOps integration.

—

More Pricing Information

GitLab Pricing

Community Pulse
	GitLab	HCL AppScan

Best Alternatives
	GitLab	HCL AppScan
Small Businesses	GitGuardian Score 9.0 out of 10	GitLab Score 8.7 out of 10
Medium-sized Companies	Veracode Score 8.8 out of 10	Veracode Score 8.8 out of 10
Enterprises	Veracode Score 8.8 out of 10	Veracode Score 8.8 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	GitLab	HCL AppScan
Likelihood to Recommend	8.3 (152 ratings)	8.3 (6 ratings)
Likelihood to Renew	9.0 (5 ratings)	- (0 ratings)
Usability	10.0 (6 ratings)	- (0 ratings)
Performance	9.0 (1 ratings)	- (0 ratings)
Support Rating	10.0 (12 ratings)	- (0 ratings)
Product Scalability	10.0 (1 ratings)	- (0 ratings)

User Testimonials
	GitLab	HCL AppScan
Likelihood to Recommend	GitLab GitLab is good if you work a lot with code and do complex repository actions. It gives you a very good overview of what were the states of your branches and the files in them at different stages in time. It's also way easier and more efficient to write pipelines for CI\CD. It's easier to read and it's easier to write them. It takes fewer clicks to achieve the same things with GitLab than it does for competitor products. Incentivized Verified User Anonymous Read full review	HCLSoftware In HCL AppScan automation maintain a reasonable pace of review and remediation of flaws for our apps. HCL AppScan is a cloud-based enterprise mobile application security testing solution for Android and iOS applications developed using Java, .Net or Objective-C. So it covers all our area and It consists of three components: AppScan Source Edition for developing and testing apps internally, AppScan Standard Edition for testing internally or externally, and AppScan Enterprise Edition for large enterprises who need to secure their entire mobile application portfolio across the organization with multiple device types. Incentivized Sanjana Gupta Internet Marketing Manager Read full review
Pros	GitLab GitLab excels in managing code versions, allowing easy tracking of changes, branch management, and merging contributions. It helps maintain code stability and reliability, saving time and effort in the development or research workflow. Powerful code review features, enabling collaboration and feedback among team members. Robust project management features, including issue tracking, kanban boards, and milestones. Incentivized Verified User Anonymous Read full review	HCLSoftware AppScan works well in finding application vulnerabilities such as SQL injection, cross-site scripting and all of the OWASP top 10. Flexible reporting allows us to generate executive reports for application owners as well as separate technical reports for developers and system engineers. Technical reports include remediation information and cross reference CVSS scores Because it maintains data on all repeated assessments it helps us to do trending and metrics on compliance Incentivized SS Seth Shestack Executive Director, Deputy CISO Read full review
Cons	GitLab CI variables management is sometimes hard to use, for example, with File type variables. The scope of each variable is also hard to guess. Access Token: there are too many types (Personal, Project, global..), and it is hard to identify the scope and where it comes from once created. Runners: auto-scaled runners are for the moment hard to put in place, and monitoring is not easy. Incentivized Verified User Anonymous Read full review	HCLSoftware It can have a FAQ session in the Application itself. It can recommend the fix for the error that occurred during the scan. Like its storing multiple manuals explore, It should have the capability of storing multiple logins. Incentivized Verified User Anonymous Read full review
Likelihood to Renew	GitLab I really feel the platform has matured quite faster than others, and it is always at the top of its game compared to the different vendors like GitHub, Azure pipelines, CircleCI, Travis, Jenkins. Since it provides, agents, CI/CD, repository hosting, Secrets management, user management, and Single Sign on; among other features Incentivized Marco Urrea DevOps Engineer Read full review	HCLSoftware No answers on this topic
Usability	GitLab I find it easy to use, I haven't had to do the integration work, so that's why it is a 9/10, cause I can't speak to how easy that part was or the initial set up, but day to day use is great! Incentivized LK Lisa Krol Quality Assurance Engineer Read full review	HCLSoftware No answers on this topic
Reliability and Availability	GitLab I've never had experienced outages from GItlab itself, but regarding the code I have deployed to Gitlab, the history helps a lot to trace the cause of the issue or performing a rollback to go back to a working version Incentivized Marco Urrea DevOps Engineer Read full review	HCLSoftware No answers on this topic
Performance	GitLab GItlab reponsiveness is amazing, has never left me IDLE. I've never had issues even with complex projects. I have not experienced any issues when integrating it with agents for example or SSO Incentivized Marco Urrea DevOps Engineer Read full review	HCLSoftware No answers on this topic
Support Rating	GitLab At this point, I do not have much experience with Gitlab support as I have never had to engage them. They have documentation that is helpful, not quite as extensive as other documentation, but helpful nonetheless. They also seem to be relatively responsive on social media platforms (twitter) and really thrived when GitHub was acquired by Microsoft Incentivized Verified User Anonymous Read full review	HCLSoftware No answers on this topic
Alternatives Considered	GitLab Gitlab seems more cutting-edge than GitHub; however, its AI tools are not yet as mature as those of CoPilot. It feels like the next-generation product, so as we selected a tool for our startup, we decided to invest in the disruptor in the space. While there are fewer out-of-the-box templates for Gitlab, we have never discovered a lack of feature parity. Incentivized Austin Franchino Senior Data and Security Engineer Read full review	HCLSoftware Both solutions are decent, however, I had team members who had the experience working with HCL AppScan. Also, the product was priced nominally which suited our budget. Further, HCL AppScan's user community was bigger and many learning resources were freely available which helped junior peers learn quickly and eliminate any issues Incentivized Verified User Anonymous Read full review
Scalability	GitLab I think is very well designed, and like any VCS it works as intended Incentivized Marco Urrea DevOps Engineer Read full review	HCLSoftware No answers on this topic
Return on Investment	GitLab GitLab cut down our spent on container, package and infrastructure registry Best thing is we can now have everything in single platform which cost effective too Quality of support is really good and they do have emergency support team as well which is great Incentivized Shivangani Tamrakar DevOps Engineer Read full review	HCLSoftware There are countless implementations to accomplish the same thing, and so many configurations are required. Even if you test it finished and find no vulnerabilities, there is no point if you just get the error screen. Until now, I was worried about vulnerabilities and security in software development, but I think it was good to find the vulnerability problem quickly with HCL AppScan. Incentivized Brandon R Hudson Software Engineer Read full review
ScreenShots	GitLab Screenshots	HCL AppScan Screenshots