GitLab DevSecOps platform enables software innovation by aiming to empower development, security, and operations teams to build better software, faster. With GitLab, teams can create, deliver, and manage code quickly and continuously instead of managing disparate tools and scripts. GitLab helps teams across the complete DevSecOps lifecycle, from developing, securing, and deploying software. Differentiators, as described by Gitlab:
Simplicity: With GitLab, DevSecOps can…
$0
per month per user
Palo Alto Networks Prisma Cloud
Score 8.1 out of 10
N/A
Prisma Cloud, from Palo Alto Networks (based on technology acquired with Evident.io, or the Evident Security Platform) is presented as a comprehensive Cloud Native Security Platform (CNSP) that delivers full lifecycle security and full stack protection for multi- and hybrid-cloud environments. The solution is dedicated to reducing attack surface and checking for vulnerabilities against known or custom signatures of threats and provides daily risk reports, and also detects what users were…
It is well-suited for any project that needs VCS. It's an excellent choice for teams that might be remote or have to collaborate across teams. Plenty of features allow for async working. With its dashboards and reporting features, it is also suitable for nontechnical PMs or stakeholders. It allows for very bespoke customization and can most often do much more than you need it to.
Vulnerability assessment is a requirement within the solution. Where Organization has on-prem and cloud workload and on-prem workload has to connect locally (on-Prem). Primsa Provide capability of hosting solution on-prem or on cloud-based on organization requirement and license can be shared between both On-Prem/Cloud workload. Where organizations want to have the flexibility of using Twistlock or Redlock (Vulnerability assessment for OS or Monitoring/remediation of cloud workload) with a single license. Prisma Enterprise license provides the capability of using Twistlock or Redlock on a need basis
I really feel the platform has matured quite faster than others, and it is always at the top of its game compared to the different vendors like GitHub, Azure pipelines, CircleCI, Travis, Jenkins. Since it provides, agents, CI/CD, repository hosting, Secrets management, user management, and Single Sign on; among other features
I find it easy to use, I haven't had to do the integration work, so that's why it is a 9/10, cause I can't speak to how easy that part was or the initial set up, but day to day use is great!
It is no doubts about their functionalities and top-notch security features. The Products do really well in their every feature and gives you complete visibility to your valuable Data at all. The Support for the Palo Alto Networks Prisma Cloud is also one of the plus point where you gain the confidence into the product.
I've never had experienced outages from GItlab itself, but regarding the code I have deployed to Gitlab, the history helps a lot to trace the cause of the issue or performing a rollback to go back to a working version
GItlab reponsiveness is amazing, has never left me IDLE. I've never had issues even with complex projects. I have not experienced any issues when integrating it with agents for example or SSO
At this point, I do not have much experience with Gitlab support as I have never had to engage them. They have documentation that is helpful, not quite as extensive as other documentation, but helpful nonetheless. They also seem to be relatively responsive on social media platforms (twitter) and really thrived when GitHub was acquired by Microsoft
GitHub is an inferior product from most points of view. We had to use it and the teams finds no positives about it. Everything is a downgrade from our previous GitLab solution. GitLab CI\CD is vastly superior to workflows, for example doing a manual node is just "when : manual" in GitLab while you have to do clickops in GitHub to achieve the same. No overview of code in branches is a minus when we tried to figure out what our colleagues are trying to merge as it looked off.
A good amount of positive impact has been brought with this tool--not only increasing the security posture but also helping to make more efficient applications.