Try our new research platform with insights from 80,000+ expert users

Docker vs Legit Security comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Docker
Ranking in Software Supply Chain Security
6th
Average Rating
8.6
Reviews Sentiment
7.4
Number of Reviews
56
Ranking in other categories
Development Platforms (1st), Container Management (5th)
Legit Security
Ranking in Software Supply Chain Security
7th
Average Rating
10.0
Reviews Sentiment
7.8
Number of Reviews
4
Ranking in other categories
Application Security Posture Management (ASPM) (6th)
 

Mindshare comparison

As of April 2025, in the Software Supply Chain Security category, the mindshare of Docker is 1.2%, up from 1.2% compared to the previous year. The mindshare of Legit Security is 4.8%, up from 4.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Software Supply Chain Security
 

Featured Reviews

Rikin Parekh - PeerSpot reviewer
Useful to create sandbox environments to run applications and makes it easy to test them
Overall, setting up the Docker environment is quite easy. Many methods exist, such as using Docker Compose and Docker networks to communicate between containers. The main challenge lies in designing the architecture and integrating different frameworks and microservices. I would rate the ease of setting up the tool at around nine out of ten. The time it takes to deploy depends on the scale of the system. For the early-stage startup I'm currently working with, it doesn't take much time. It's just me handling the deployment. In our early-stage startup, we have a couple of teams with around four to five backend APIs and two front-end services. Deploying these doesn't take much time. My focus is more on minimizing costs due to our lean startup structure.
Tim Crothers - PeerSpot reviewer
Provides strong visibility, straightforward integration, and reduces the risk of attacks
Legit Security is a product that hyper-focuses on the various aspects of the software development pipeline. For example, if an engineer spins off a new project and stands up a new Git project, Legit automatically detects it, connects Snyk and other tools, and ensures the engineering team doesn't have to think about it. This way, we stay on top of security from the beginning. On the other hand, Legit provides a clear view of the controls around repositories. We have standards requiring code reviews and similar practices, and Legit shows us whether these are being followed. Additionally, Legit helps us identify unmaintained repositories, which often arise when engineering teams try something and leave it behind. This knowledge allows us to determine the appropriate action for these neglected projects. One area where Legit falls short is secret detection. While it functions well overall, the feature has a 10-20 percent false positive rate, requiring some manual intervention. Almost everything else works flawlessly. The true value proposition of Legit lies not in its features but in its ability to support our product security program's focus on creating guardrails instead of toll gates. Unlike traditional programs that require security reviews at specific stages, hindering development flow, we strive to partner with the product engineering team to ship secure code seamlessly within their existing workflows. Legit plays a crucial role in this by automatically notifying us of new projects, eliminating the need for manual communication. This partnership approach, enabled by Legit, allows us to work much closer with our engineering teams than ever before.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature of Docker is that it revolutionized virtualization by providing a new approach with containers that completely nullified the time it used to take to deploy applications on virtual servers, resulting in deployment times that can be as quick as milliseconds, unless it is a heavy application, such as Java. Additionally, resource utilization has greatly improved with Docker, allowing for more resources to be allocated to other tasks. These are a few key features that make Docker a preferred choice."
"The most valuable feature of Docker is that it provides a containerized environment. The isolation between the environments is beneficial. Additionally, the solution is easy to use."
"The capability of the solution to convert an application into a Docker image is a vital functionality"
"It is a very stable solution. Stability-wise, I rate the solution a ten out of ten."
"The most valuable feature of Docker is its portability, ease of security management, and low resource usage."
"The solution's most valuable feature is the Dockerfile, which makes the life of developers easy. Developers get a real understanding of container creation."
"We are able to stop our containers or stop the service with a single command."
"The ability to use an image with the software built into it, rather than just the software, is beneficial."
"We implemented Legit Security to gain visibility into all development teams and ensure that consistent controls are in place and accounted for on every route."
"Legit has increased my security posture to a level I couldn't achieve before. I don't need to worry as much about what's happening within my developer environments. I can rest assured that my vulnerabilities are being detected."
"The true value proposition of Legit lies not in its features but in its ability to support our product security program's focus on creating guardrails instead of toll gates."
"Legit has had a positive effect on our overall security posture."
 

Cons

"We have found that it is not easy to install it into a Windows system."
"Docker can improve the integration with Microsoft Windows. It does not support native installations."
"The documentation could be improved."
"There can be challenges with port mapping, however, that's not related to Docker itself."
"The product does not have an extensive documentation. The tool does not have good scenarios. We have to go through the GitHub repository and investigate similar scenarios. Also, if you are copying multiple things, then you can jeopardize the copy number. The copying aspect also lacks a UI part. We also need to limit the memory."
"I would like to see a more UI-based tool so that students can easily understand it rather than memorizing all of the Docker commands."
"I would love to have it available on Linux."
"The stability could be improved."
"The one we're working on right now is the ability to dynamically rerun development teams and groups."
"Legit Security could do a little better with detecting publicly exposed keys. It's not bad. The detections that they are running get to everything eventually, but it would be great if they could increase some of that awareness."
"One issue is that engineering teams don't always embed secrets in the same way, making it difficult for the tool to consistently identify them."
"I would like them to have their own static code scanner, and I'd like them to have their own open-source software scanners."
 

Pricing and Cost Advice

"I use the solution's open-source version."
"Docker is a free-to-use solution. However, Docker Enterprise is not free."
"Customers pay for the license through a yearly subscription model, where they pay per license. This means that the license is based on a subscription, and the customer pays annually for each license they use."
"Docker is a free open-source solution. However, there is the Docker Enterprise which is a paid solution."
"Docker is open source. To use a Docker enterprise model, we would need to pay for it."
"Docker's price is good."
"Docker is a free tool."
"For commercial use, it's about $30 per month. The license itself isn't expensive, but if there are many users, the price becomes high."
"The pricing is reasonable."
report
Use our free recommendation engine to learn which Software Supply Chain Security solutions are best for your needs.
848,716 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
16%
Insurance Company
11%
Financial Services Firm
10%
Government
8%
Computer Software Company
20%
Financial Services Firm
14%
University
13%
Pharma/Biotech Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about Docker?
We are using Docker to host applications.
What needs improvement with Docker?
In terms of communication between services, perhaps the configuration within networks between containers could be improved.
What do you like most about Legit Security?
The true value proposition of Legit lies not in its features but in its ability to support our product security program's focus on creating guardrails instead of toll gates.
What needs improvement with Legit Security?
Legit Security's secret detection works. However, there are some limitations to its effectiveness. One issue is that engineering teams don't always embed secrets in the same way, making it difficul...
 

Comparisons

 

Overview

 

Sample Customers

Information Not Available
Google, NYSE, Kraft-Hienz, Takeda Pharmaceuticals, and many other large enterprise and Fortune 500 customers. Learn more by going to: https://www.legitsecurity.com/...
Find out what your peers are saying about Docker vs. Legit Security and other solutions. Updated: March 2025.
848,716 professionals have used our research since 2012.