Try our new research platform with insights from 80,000+ expert users

GitHub Advanced Security pros and cons

Vendor: GitHub

4.4 out of 5

8 reviews
100% willing to recommend

Pros & Cons summary

GitHub Advanced Security prevents accidental exposure of sensitive information and provides a platform integrating security needs. It uses AI for accurate analysis, minimizing false positives, with no performance issues. Valued features include security and dependency scans. However, it lacks a centralized dashboard and simpler deployment. Improvement is needed in vulnerability categorization and DST features. Additionally, there's a delay in open-source vulnerability updates.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.

Prominent pros & cons

PROS

GitHub Advanced Security ensures user passwords or sensitive information are not accidentally exposed in code or reports.

The most valuable features include security scan, dependency scan, and cost-effectiveness.

GitHub Advanced Security uses artificial intelligence, specifically CodeQL, to provide fewer but more reliable findings.

It is a stable and scalable option capable of handling new applications with its analysis capabilities.

GitHub Advanced Security is developer-friendly and integrates within the development environment.

CONS

There could be a centralized dashboard to view reports of all projects on one platform.

There is a need for a more refined approach to categorizing and emphasizing specific vulnerabilities.

Open-source security vulnerabilities are not getting updated in a timely manner.

The deployment process requires simplification.

GitHub Advanced Security should address API security issues, which are currently unaddressed.

GitHub Advanced Security Pros review quotes

reviewer2301468

Technical Program Manager at a healthcare company with 10,001+ employees

Nov 6, 2023

The most valuable is the developer experience and the extensibility of the overall ecosystem.

Read full review

reviewer2395785

Senior Solution Architect at a manufacturing company with 10,001+ employees

Jul 1, 2024

GitHub Advanced Security uses artificial intelligence in the backend, specifically CodeQL, to analyze code and provide fewer but more reliable findings, so there are less false positives.

Read full review

PA

Prakash Ashtikar

Assistant General Manager at Air India Limited

Feb 5, 2024

It is a stable solution...It is a scalable solution as it can handle new applications along with the analysis part.

Read full review

GitHub Advanced Security

Free Report: GitHub Advanced Security Reviews and More

Learn what your peers think about GitHub Advanced Security. Get advice and tips from experienced pros sharing their opinions. Updated: February 2025.

837,501 professionals have used our research since 2012.

VN

Vaishnav Nugala

Technical Consultant at Canarys Automations Pvt. Ltd.

Jan 24, 2024

Dependency scanning is a valuable feature.

Read full review

Sabna Sainudeen

Director, Application Security at Carlsberg

Feb 5, 2025

GitHub Advanced Security is a very developer-friendly solution that is integrated within my development environment.

Read full review

reviewer2329650

DevOps Lead at a computer software company with 5,001-10,000 employees

Jan 9, 2024

The product's most valuable features are security scan, dependency scan, and cost-effectiveness.

Read full review

Sirinat-Paphatsirinatthi

Co-Founder at Cloud NC

Jan 15, 2024

GitHub provides advanced security, which is why the customers choose this tool; it allows them to rely solely on GitHub as one platform for everything they need.

Read full review

reviewer2267097

Integration and Solution Architect at a government with 501-1,000 employees

Sep 6, 2023

It ensures user passwords or sensitive information are not accidentally exposed in code or reports.

Read full review

GitHub Advanced Security Cons review quotes

reviewer2301468

Technical Program Manager at a healthcare company with 10,001+ employees

Nov 6, 2023

A more refined approach, categorizing and emphasizing specific vulnerabilities, would be beneficial.

Read full review

reviewer2395785

Senior Solution Architect at a manufacturing company with 10,001+ employees

Jul 1, 2024

Maybe make it compatible with more programming languages. Have a customized ruleset where the end-user can create their own rules for scanning.

Read full review

PA

Prakash Ashtikar

Assistant General Manager at Air India Limited

Feb 5, 2024

The deployment part of the product is an area of concern that needs to be made easier from an improvement perspective.

Read full review

GitHub Advanced Security

Free Report: GitHub Advanced Security Reviews and More

Learn what your peers think about GitHub Advanced Security. Get advice and tips from experienced pros sharing their opinions. Updated: February 2025.

837,501 professionals have used our research since 2012.

VN

Vaishnav Nugala

Technical Consultant at Canarys Automations Pvt. Ltd.

Jan 24, 2024

The customizations are a little bit difficult.

Read full review

Sabna Sainudeen

Director, Application Security at Carlsberg

Feb 5, 2025

Open-source security vulnerabilities are not getting updated in a timely manner.

Read full review

reviewer2329650

DevOps Lead at a computer software company with 5,001-10,000 employees

Jan 9, 2024

There could be DST features included in the product.

Read full review

Sirinat-Paphatsirinatthi

Co-Founder at Cloud NC

Jan 15, 2024

The report limitations are the main issue.

Read full review

reviewer2267097

Integration and Solution Architect at a government with 501-1,000 employees

Sep 6, 2023

There could be a centralized dashboard to view reports of all the projects on one platform.

Read full review

Product Categories

Product Categories

Application Security Tools

Popular Comparisons

Popular Comparisons

SonarQube Server (formerly SonarQube) vs GitHub Advanced Security

GitLab vs GitHub Advanced Security

Snyk vs GitHub Advanced Security

Checkmarx One vs GitHub Advanced Security

Veracode vs GitHub Advanced Security

Mend.io vs GitHub Advanced Security

Fortify on Demand vs GitHub Advanced Security

Sonatype Lifecycle vs GitHub Advanced Security

GitGuardian Platform vs GitHub Advanced Security

Fortify Application Defender vs GitHub Advanced Security

Contrast Security Assess vs GitHub Advanced Security

See all alternatives

Product Categories

Product Categories

Application Security Tools

Popular Comparisons

Popular Comparisons

SonarQube Server (formerly SonarQube) vs GitHub Advanced Security

GitLab vs GitHub Advanced Security

Snyk vs GitHub Advanced Security

Checkmarx One vs GitHub Advanced Security

Veracode vs GitHub Advanced Security

Mend.io vs GitHub Advanced Security

Fortify on Demand vs GitHub Advanced Security

Sonatype Lifecycle vs GitHub Advanced Security

GitGuardian Platform vs GitHub Advanced Security

Fortify Application Defender vs GitHub Advanced Security

Contrast Security Assess vs GitHub Advanced Security

See all alternatives

Related questions

803

If you had to both encrypt and compress data during transmission, which would you do first and why?

67

When evaluating Application Security, what aspect do you think is the most important to look for?

148

What are the Top 5 cybersecurity trends in 2022?

161

What are the threats associated with using ‘bogus’ cybersecurity tools?

57

We're evaluating Tripwire, what else should we consider?

16

Which application security solutions include both vulnerability scans and quality checks?

1,845

Is SonarQube the best tool for static analysis?

34

Why Do I Need Application Security Software?

80

Which Email Security enterprise solution would you choose: Cisco Secure Email vs Forcepoint Email Security vs Barracuda Email Security Gateway?

85

SAST vs. DAST: Which is better for application security testing?