Try our new research platform with insights from 80,000+ expert users
GitHub Code Scanning Logo

GitHub Code Scanning Reviews

Vendor: GitHub
4.8 out of 5
Post review

What is GitHub Code Scanning?

Code scanning is a feature that you use to analyze the code in a GitHub repository to find security vulnerabilities and coding errors. Any problems identified by the analysis are shown in GitHub.

Get the Static Application Security Testing (SAST) Buyer's Guide and find out what your peers are saying about GitHub Code Scanning, SonarQube Server (formerly SonarQube), Veracode and more!
GitHub Code Scanning is the #22 ranked solution in AST tools. PeerSpot users give GitHub Code Scanning an average rating of 9.6 out of 10. Based on the analysis of the 2 most recent GitHub Code Scanning reviews, the overall sentiment is positive, with a sentiment score of 8.4. (The highest in the category). GitHub Code Scanning is most commonly compared to SonarQube Server (formerly SonarQube): GitHub Code Scanning vs SonarQube Server (formerly SonarQube). GitHub Code Scanning is popular among the large enterprise segment, accounting for 67% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 15% of all views.
Buyer's Guide
Static Application Security Testing (SAST)
November 2024
Get the category report
Helped 823,875 peers since 2012

GitHub Code Scanning mindshare

As of December 2024, the mindshare of GitHub Code Scanning in the Static Application Security Testing (SAST) category stands at 0.6%, up from 0.1% compared to the previous year, according to calculations based on PeerSpot user engagement data.
Static Application Security Testing (SAST)
 
 
Key learnings from peers

Valuable Features

Valuable Features

  • "The solution helps identify vulnerabilities by understanding how ports communicate with applications running on a system. Ports are like house numbers; to visit someone's house, you must know their number. Similarly, ports are used to communicate with applications. For example, if you want to use an HTTP web server, you must use port 80. It is the port on which the web application or your server listens for incoming requests."
  • "We use GitHub Code Scanning mostly for source code management."

Room for Improvement

  • "GitHub Code Scanning should add more templates."

Pricing

  • "The minimum pricing for the tool is five dollars a month."
  • "GitHub Code Scanning is a moderately priced solution."

Scalability

Stability

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.
Download our Static Application Security Testing (SAST) Buyer's Guide for additional reliable information.

Top industries

By visitors reading reviews
Computer Software Company
15%
Financial Services Firm
9%
Government
9%
Transportation Company
8%
Insurance Company
7%
Comms Service Provider
6%
Healthcare Company
6%
Manufacturing Company
6%
University
4%
Retailer
4%
Energy/Utilities Company
3%
Non Profit
3%
Educational Organization
3%
Consumer Goods Company
3%
Media Company
3%
Performing Arts
2%
Legal Firm
2%
Pharma/Biotech Company
2%
Construction Company
2%
Logistics Company
1%
Outsourcing Company
1%
Hospitality Company
1%
Printing Company
1%

Compare GitHub Code Scanning with alternative products

Go!

Learn more about GitHub Code Scanning

Product Video

Related questions

  • 19
What Application Security Solution Do You Use That Is DevOps Friendly?
  • 101
Which is the most comprehensive open source Web Security Testing tool?
  • 251
What is the best Application Security Testing platform?
  • 6
When evaluating Application Security Testing, what aspect do you think is the most important to look for?
  • 114
SAST vs. DAST: Which is better for application security testing?
  • 137
What tools do you rely on for building a DevSecOps pipeline?
  • 35
What does the Log4j/Log4Shell vulnerability mean for your company?
  • 51
Checkmarx or Veracode. Which should we choose?
  • 68
What are your recommended automated penetration testing tools?
  • 62
What are the OWASP top 10 in 2020?

Product Categories

Product Categories
Static Application Security Testing (SAST)

Popular Comparisons

Popular Comparisons
SonarQube Server (formerly SonarQube) vs GitHub Code Scanning Logo
SonarQube Server (formerly SonarQube) vs GitHub Code Scanning
Veracode vs GitHub Code Scanning Logo
Veracode vs GitHub Code Scanning
Coverity vs GitHub Code Scanning Logo
Coverity vs GitHub Code Scanning
OWASP Zap vs GitHub Code Scanning Logo
OWASP Zap vs GitHub Code Scanning
SonarQube Cloud (formerly SonarCloud) vs GitHub Code Scanning Logo
SonarQube Cloud (formerly SonarCloud) vs GitHub Code Scanning
Acunetix vs GitHub Code Scanning Logo
Acunetix vs GitHub Code Scanning
HCL AppScan vs GitHub Code Scanning Logo
HCL AppScan vs GitHub Code Scanning
Aikido Security vs GitHub Code Scanning Logo
Aikido Security vs GitHub Code Scanning
See all alternatives