TrustRadius

GitLab vs. Coverity Static Analysis (SAST)

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
GitLab
Score 8.7 out of 10
N/A
GitLab is an intelligent orchestration platform for DevSecOps, where software teams enable AI at every stage of the software lifecycle to ship faster. The platform enables teams to automate repetitive tasks across planning, building, securing, testing, deploying, and maintaining software.
$0
per month per user
Synopsys Coverity
Score 8.3 out of 10
N/A
Synopsys offers the Coverity static application security testing (SAST) solution, to help users build software that’s more secure, higher-quality, and compliant with standards.N/A
Pricing
GitLabCoverity Static Analysis (SAST)
Editions & Modules
GitLab Free (self-managed)
$0
GitLab Free
$0
GitLab Premium
$29
per month per user
GitLab Premium (self-managed)
$29
per month per user
GitLab Ultimate
Contact Sales
GitLab Ultimate (self-managed)
Contact Sales
No answers on this topic
Offerings
Pricing Offerings
GitLabSynopsys Coverity
Free Trial
YesNo
Free/Freemium Version
YesNo
Premium Consulting/Integration Services
YesYes
Entry-level Setup FeeOptionalOptional
Additional DetailsGitLab Credits enable flexible, consumption-based access to agentic AI capabilities in the GitLab platform, allowing you to scale AI adoption at your own pace while maintaining cost predictability. Powered by Duo Agent Platform, GitLab’s agentic AI capabilities help software teams to collaborate at AI speed, without compromising quality and enterprise security. If usage exceeds monthly allocations and overage terms are accepted, automated on-demand billing activates without service interruption, so your developers never lose access to AI capabilities they need. Real-time dashboards provide transparency into AI consumption patterns. Software teams can see usage across users, projects, and groups with granular attribution for cost allocation. Automated threshold alerts facilitate proactive planning. Advanced analytics deliver trending, forecasting, and FinOps integration.Contact the Synopsys Software Integrity Group (SIG) Sales team at https://www.synopsys.com/software-integrity/contact-sales.html for more detailed pricing information.
More Pricing Information
Community Pulse
GitLabCoverity Static Analysis (SAST)
Best Alternatives
GitLabCoverity Static Analysis (SAST)
Small Businesses
GitGuardian
GitGuardian
Score 9.0 out of 10
GitLab
GitLab
Score 8.7 out of 10
Medium-sized Companies
Veracode
Veracode
Score 8.8 out of 10
Veracode
Veracode
Score 8.8 out of 10
Enterprises
Veracode
Veracode
Score 8.8 out of 10
Veracode
Veracode
Score 8.8 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
GitLabCoverity Static Analysis (SAST)
Likelihood to Recommend
8.4
(152 ratings)
9.0
(1 ratings)
Likelihood to Renew
9.0
(5 ratings)
-
(0 ratings)
Usability
10.0
(6 ratings)
-
(0 ratings)
Performance
9.0
(1 ratings)
-
(0 ratings)
Support Rating
10.0
(12 ratings)
-
(0 ratings)
Product Scalability
10.0
(1 ratings)
-
(0 ratings)
User Testimonials
GitLabCoverity Static Analysis (SAST)
Likelihood to Recommend
GitLab
GitLab is good if you work a lot with code and do complex repository actions. It gives you a very good overview of what were the states of your branches and the files in them at different stages in time. It's also way easier and more efficient to write pipelines for CI\CD. It's easier to read and it's easier to write them. It takes fewer clicks to achieve the same things with GitLab than it does for competitor products.
Verified User
Anonymous
Read full review
Synopsys
Best suits for large scale and dynamic development environment. It may be best tool if you want to release your apps with less TAT. However if you have a CRM tool which is COTS product it can offer little help. Even then you should be familiar with what features of Coverity Static Analysis (SAST) are helpful for your development environment
Rahul Deshmukh | TrustRadius Reviewer
Rahul Deshmukh
Security Solutions Architect
Read full review
Pros
GitLab
  • GitLab excels in managing code versions, allowing easy tracking of changes, branch management, and merging contributions.
  • It helps maintain code stability and reliability, saving time and effort in the development or research workflow.
  • Powerful code review features, enabling collaboration and feedback among team members.
  • Robust project management features, including issue tracking, kanban boards, and milestones.
Verified User
Anonymous
Read full review
Synopsys
  • It can provide security scanning dashboard
  • Help detect vulnerabilities and recommend remediation
  • Integration of devsecops helps speed up release cycles
Rahul Deshmukh | TrustRadius Reviewer
Rahul Deshmukh
Security Solutions Architect
Read full review
Cons
GitLab
  • CI variables management is sometimes hard to use, for example, with File type variables. The scope of each variable is also hard to guess.
  • Access Token: there are too many types (Personal, Project, global..), and it is hard to identify the scope and where it comes from once created.
  • Runners: auto-scaled runners are for the moment hard to put in place, and monitoring is not easy.
Verified User
Anonymous
Read full review
Synopsys
  • Coverage of integration with other security tools can be improved
  • Customisation of dashboard to enable customer choice of tracking
  • Showcase devsecops progressive tasks from SLA and violation from code scanner perspective
Rahul Deshmukh | TrustRadius Reviewer
Rahul Deshmukh
Security Solutions Architect
Read full review
Likelihood to Renew
GitLab
I really feel the platform has matured quite faster than others, and it is always at the top of its game compared to the different vendors like GitHub, Azure pipelines, CircleCI, Travis, Jenkins. Since it provides, agents, CI/CD, repository hosting, Secrets management, user management, and Single Sign on; among other features
Marco Urrea | TrustRadius Reviewer
Marco Urrea
DevOps Engineer
Read full review
Synopsys
No answers on this topic
Usability
GitLab
I find it easy to use, I haven't had to do the integration work, so that's why it is a 9/10, cause I can't speak to how easy that part was or the initial set up, but day to day use is great!
LK
Lisa Krol
Quality Assurance Engineer
Read full review
Synopsys
No answers on this topic
Reliability and Availability
GitLab
I've never had experienced outages from GItlab itself, but regarding the code I have deployed to Gitlab, the history helps a lot to trace the cause of the issue or performing a rollback to go back to a working version
Marco Urrea | TrustRadius Reviewer
Marco Urrea
DevOps Engineer
Read full review
Synopsys
No answers on this topic
Performance
GitLab
GItlab reponsiveness is amazing, has never left me IDLE. I've never had issues even with complex projects. I have not experienced any issues when integrating it with agents for example or SSO
Marco Urrea | TrustRadius Reviewer
Marco Urrea
DevOps Engineer
Read full review
Synopsys
No answers on this topic
Support Rating
GitLab
At this point, I do not have much experience with Gitlab support as I have never had to engage them. They have documentation that is helpful, not quite as extensive as other documentation, but helpful nonetheless. They also seem to be relatively responsive on social media platforms (twitter) and really thrived when GitHub was acquired by Microsoft
Verified User
Anonymous
Read full review
Synopsys
No answers on this topic
Alternatives Considered
GitLab
Gitlab seems more cutting-edge than GitHub; however, its AI tools are not yet as mature as those of CoPilot. It feels like the next-generation product, so as we selected a tool for our startup, we decided to invest in the disruptor in the space. While there are fewer out-of-the-box templates for Gitlab, we have never discovered a lack of feature parity.
Austin Franchino | TrustRadius Reviewer
Austin Franchino
Senior Data and Security Engineer
Read full review
Synopsys
Coverity Static Analysis (SAST) has wide coverage in terms of Owasp Top 10 vulnerabilities, various types of languages, backward integration. While other tools offer similar experience of code scanning, coverity helps in pointed recommendations for quick closure of vulnerabilities. The historical analysis of vulnerabilities is a good value add in understanding which type of code and which language is better in improving cyber security maturity.
Rahul Deshmukh | TrustRadius Reviewer
Rahul Deshmukh
Security Solutions Architect
Read full review
Scalability
GitLab
I think is very well designed, and like any VCS it works as intended
Marco Urrea | TrustRadius Reviewer
Marco Urrea
DevOps Engineer
Read full review
Synopsys
No answers on this topic
Return on Investment
GitLab
  • GitLab cut down our spent on container, package and infrastructure registry
  • Best thing is we can now have everything in single platform which cost effective too
  • Quality of support is really good and they do have emergency support team as well which is great
Shivangani Tamrakar | TrustRadius Reviewer
Shivangani Tamrakar
DevOps Engineer
Read full review
Synopsys
  • Helped reduce efforts of development team avoiding rework
  • Increased security maturity
  • Increased efficiency of the teams
Rahul Deshmukh | TrustRadius Reviewer
Rahul Deshmukh
Security Solutions Architect
Read full review
ScreenShots

GitLab Screenshots

Screenshot of What is Intelligent Orchestration for DevSecOps?Screenshot of an overview of GitLab Duo Agent PlatformScreenshot of a new agent creation screen

Synopsys Coverity Screenshots

Screenshot of Coverity works with the Code Sight™ IDE plugin, enabling developers to find and fix security and quality defects as they write code.Screenshot of Coverity provides broad security and quality checker support for 21 languages and over 70 frameworks.