Try our new research platform with insights from 80,000+ expert users

Docker vs Legit Security comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Docker
Ranking in Software Supply Chain Security
6th
Average Rating
8.6
Reviews Sentiment
7.4
Number of Reviews
56
Ranking in other categories
Development Platforms (1st), Container Management (5th)
Legit Security
Ranking in Software Supply Chain Security
7th
Average Rating
10.0
Reviews Sentiment
7.8
Number of Reviews
4
Ranking in other categories
Application Security Posture Management (ASPM) (6th)
 

Mindshare comparison

As of April 2025, in the Software Supply Chain Security category, the mindshare of Docker is 1.2%, up from 1.2% compared to the previous year. The mindshare of Legit Security is 4.8%, up from 4.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Software Supply Chain Security
 

Featured Reviews

Rikin Parekh - PeerSpot reviewer
Useful to create sandbox environments to run applications and makes it easy to test them
Overall, setting up the Docker environment is quite easy. Many methods exist, such as using Docker Compose and Docker networks to communicate between containers. The main challenge lies in designing the architecture and integrating different frameworks and microservices. I would rate the ease of setting up the tool at around nine out of ten. The time it takes to deploy depends on the scale of the system. For the early-stage startup I'm currently working with, it doesn't take much time. It's just me handling the deployment. In our early-stage startup, we have a couple of teams with around four to five backend APIs and two front-end services. Deploying these doesn't take much time. My focus is more on minimizing costs due to our lean startup structure.
Tim Crothers - PeerSpot reviewer
Provides strong visibility, straightforward integration, and reduces the risk of attacks
Legit Security is a product that hyper-focuses on the various aspects of the software development pipeline. For example, if an engineer spins off a new project and stands up a new Git project, Legit automatically detects it, connects Snyk and other tools, and ensures the engineering team doesn't have to think about it. This way, we stay on top of security from the beginning. On the other hand, Legit provides a clear view of the controls around repositories. We have standards requiring code reviews and similar practices, and Legit shows us whether these are being followed. Additionally, Legit helps us identify unmaintained repositories, which often arise when engineering teams try something and leave it behind. This knowledge allows us to determine the appropriate action for these neglected projects. One area where Legit falls short is secret detection. While it functions well overall, the feature has a 10-20 percent false positive rate, requiring some manual intervention. Almost everything else works flawlessly. The true value proposition of Legit lies not in its features but in its ability to support our product security program's focus on creating guardrails instead of toll gates. Unlike traditional programs that require security reviews at specific stages, hindering development flow, we strive to partner with the product engineering team to ship secure code seamlessly within their existing workflows. Legit plays a crucial role in this by automatically notifying us of new projects, eliminating the need for manual communication. This partnership approach, enabled by Legit, allows us to work much closer with our engineering teams than ever before.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The ability to use an image with the software built into it, rather than just the software, is beneficial."
"The solution is easy to install."
"The lift and shift creates a lightweight image."
"Docker is convenient and easy to use."
"We are able to stop our containers or stop the service with a single command."
"It is a quite mature technology."
"The tool's most valuable feature is its sandbox environment. It makes it very easy to run and test applications without needing configurations, which is the core advantage of containerization. Kubernetes and Helm are helpful as they provide high-level metrics, making tracking the status of all the containers and applications running easier."
"The solution is stable."
"Legit has had a positive effect on our overall security posture."
"We implemented Legit Security to gain visibility into all development teams and ensure that consistent controls are in place and accounted for on every route."
"The true value proposition of Legit lies not in its features but in its ability to support our product security program's focus on creating guardrails instead of toll gates."
"Legit has increased my security posture to a level I couldn't achieve before. I don't need to worry as much about what's happening within my developer environments. I can rest assured that my vulnerabilities are being detected."
 

Cons

"I would like to see a single package image orchestration bundled together."
"Docker could improve by providing the ability to use the GPU for parallel processing. If there was the capability of using the GPU it would improve the machine learning that I want to use."
"The volumes for persistent storage could be more user friendly right out of the box."
"The solution could improve with a GUI instead of only a command line interface. Having to use the command line interface can be a hassle."
"I think Docker can improve as it relates to overall stability."
"One item that could be improved is the overall stability of Docker."
"The command line interface could be more intuitive. I constantly struggle with it."
"As for improving Docker, I would like to see enhancements in its user interface and documentation to make it even more user-friendly and accessible. I believe Docker will expand its scope and reduce limitations to support more applications, both online and offline. For instance, in scenarios like deployments on ships or during upgrades, Docker can continue to offer software services and container-based intelligence."
"I would like them to have their own static code scanner, and I'd like them to have their own open-source software scanners."
"The one we're working on right now is the ability to dynamically rerun development teams and groups."
"One issue is that engineering teams don't always embed secrets in the same way, making it difficult for the tool to consistently identify them."
"Legit Security could do a little better with detecting publicly exposed keys. It's not bad. The detections that they are running get to everything eventually, but it would be great if they could increase some of that awareness."
 

Pricing and Cost Advice

"We are using the open-source version of the solution."
"Docker is open source. To use a Docker enterprise model, we would need to pay for it."
"Docker is a free tool."
"Docker's price is good."
"Docker has made some changes and there is an enterprise version that is affordable."
"The pricing of the solution is fairly cheap."
"Docker is a free open-source solution."
"The product is not expensive."
"The pricing is reasonable."
report
Use our free recommendation engine to learn which Software Supply Chain Security solutions are best for your needs.
845,040 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Insurance Company
11%
Financial Services Firm
10%
Manufacturing Company
9%
Computer Software Company
21%
Financial Services Firm
14%
University
13%
Pharma/Biotech Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about Docker?
We are using Docker to host applications.
What needs improvement with Docker?
In terms of communication between services, perhaps the configuration within networks between containers could be improved.
What do you like most about Legit Security?
The true value proposition of Legit lies not in its features but in its ability to support our product security program's focus on creating guardrails instead of toll gates.
What needs improvement with Legit Security?
Legit Security's secret detection works. However, there are some limitations to its effectiveness. One issue is that engineering teams don't always embed secrets in the same way, making it difficul...
 

Comparisons

 

Overview

 

Sample Customers

Information Not Available
Google, NYSE, Kraft-Hienz, Takeda Pharmaceuticals, and many other large enterprise and Fortune 500 customers. Learn more by going to: https://www.legitsecurity.com/...
Find out what your peers are saying about Docker vs. Legit Security and other solutions. Updated: March 2025.
845,040 professionals have used our research since 2012.