# Best Secure Code Review Software for Medium-Sized Businesses *By [Adam Crivello](https://research.g2.com/insights/author/adam-crivello)* Products classified in the overall Secure Code Review category are similar in many regards and help companies of all sizes solve their business problems. However, medium-sized business features, pricing, setup, and installation differ from businesses of other sizes, which is why we match buyers to the right Medium-Sized Business Secure Code Review to fit their needs. Compare product ratings based on reviews from enterprise users or connect with one of G2's buying advisors to find the right solutions within the Medium-Sized Business Secure Code Review category. In addition to qualifying for inclusion in the Secure Code Review Software category, to qualify for inclusion in the Medium-Sized Business Secure Code Review Software category, a product must have at least 10 reviews left by a reviewer from a medium-sized business. ## How Many Secure Code Review Software Products Does G2 Track? **Total Products under this Category:** 69 ## How Does G2 Rank Secure Code Review Software Products? **Why You Can Trust G2's Software Rankings:** - 30 Analysts and Data Experts - 4,900+ Authentic Reviews - 69+ Products - Unbiased Rankings G2's software rankings are built on verified user reviews, rigorous moderation, and a consistent research methodology maintained by a team of analysts and data experts. Each product is measured using the same transparent criteria, with no paid placement or vendor influence. While reviews reflect real user experiences, which can be subjective, they offer valuable insight into how software performs in the hands of professionals. Together, these inputs power the G2 Score, a standardized way to compare tools within every category. --- **Sponsored** ### Endor Labs Endor Labs helps you build and ship secure software fast, whether it's written by humans and AI. While conventional code scanning tools drown teams in false positives, Endor Labs zeroes in on real risks, empowering developers without slowing them down. Trusted by OpenAI, Snowflake, Peloton, Robinhood, Dropbox, Rubrik, and more, Endor Labs is transforming AppSec. • 92% less alerts: Unify code scanning (SAST, SCA, container, secrets, malware, AI models) and automate security code reviews with AI. Pinpoint real vulnerabilities with function-level reachability, filtering out unreachable risks and letting developers fix what matters as they code. • 6X faster fixes: Skip the guesswork. Endor Labs guides developers towards safe OSS upgrades, and backports fixes for hard-to-update libraries. • Guardrails for AI coding assistants: Endor Labs natively integrates into AI coding assistants to help them produce code securely by default. Additionally, Endor Labs has built multiple agents to review the AI and human generated code for architecture and business-logic issues. • Compliance, streamlined: FedRAMP, PCI, NIST, and SLSA compliance is simplified with artifact signing, SBOM, VEX, and more—accelerating your path to secure, compliant code. Learn more at: www.endorlabs.com/demo-request [Visit website](https://www.g2.com/external_clickthroughs/record?secure%5Bad_program%5D=paid_promo&secure%5Bad_slot%5D=category_product_list&secure%5Bcategory_id%5D=2639&secure%5Bmedium%5D=sponsored&secure%5Bprioritized%5D=false&secure%5Bproduct_id%5D=1317430&secure%5Bresource_id%5D=2639&secure%5Bresource_type%5D=Category&secure%5Bsource_type%5D=category_page&secure%5Bsource_url%5D=https%3A%2F%2Fwww.g2.com%2Fcategories%2Fsecure-code-review%2Fmid-market&secure%5Btoken%5D=0e45c1cc49293259dbb43a34fbf9e33a7bbfa5534bd93ae9fe99ca7bc040902b&secure%5Burl%5D=https%3A%2F%2Fwww.endorlabs.com%2Fplatform&secure%5Burl_type%5D=paid_promos) --- ## What Are the Top-Rated Secure Code Review Software Products in 2026? ### 1. [GitHub](https://www.g2.com/products/github/reviews) GitHub is where the world builds software. Millions of individuals, organizations and businesses around the world use GitHub to discover, share, and contribute software. Developers at startups to Fortune 50 companies use GitHub, every step of the way. **Average Rating:** 4.7/5.0 **Total Reviews:** 2,278 **How Do G2 Users Rate GitHub?** - **Quality of Support:** 8.7/10 (Category avg: 9.2/10) - **Has the product been a good partner in doing business?:** 8.9/10 (Category avg: 8.9/10) - **Ease of Setup:** 9.0/10 (Category avg: 8.7/10) **Who Is the Company Behind GitHub?** - **Seller:** [GitHub](https://www.g2.com/sellers/github) - **Year Founded:** 2008 - **HQ Location:** San Francisco, CA - **Twitter:** @github (2,643,924 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/1418841/ (6,106 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Software Engineer, Senior Software Engineer - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 46% Small-Business, 31% Mid-Market #### What Are GitHub's Pros and Cons? **Pros:** - Features (124 reviews) - Ease of Use (111 reviews) - Team Collaboration (109 reviews) - Collaboration (107 reviews) - Version Control (103 reviews) **Cons:** - Complexity (47 reviews) - Learning Curve (45 reviews) - Difficulty for Beginners (43 reviews) - Learning Difficulty (41 reviews) - Steep Learning Curve (36 reviews) ### 2. [GitLab](https://www.g2.com/products/gitlab/reviews) GitLab is the most comprehensive AI-Powered DevSecOps platform that enables software innovation by empowering development, security, and operations teams to build better software, faster. With GitLab, teams can create, deliver, and manage code quickly and continuously instead of managing disparate tools and scripts. GitLab helps your teams across the complete DevSecOps lifecycle, from developing, securing, and deploying software. What makes us truly different? - Flexibility: Consume as a service or manage your own deployment - Cloud-Agnostic: Deploy anywhere with no vendor lock-in - No rip and replace: Scale to a platform approach at your own pace **Average Rating:** 4.5/5.0 **Total Reviews:** 874 **How Do G2 Users Rate GitLab?** - **Quality of Support:** 8.5/10 (Category avg: 9.2/10) - **Has the product been a good partner in doing business?:** 8.8/10 (Category avg: 8.9/10) - **Ease of Setup:** 8.7/10 (Category avg: 8.7/10) **Who Is the Company Behind GitLab?** - **Seller:** [GitLab Inc.](https://www.g2.com/sellers/gitlab-inc) - **Company Website:** https://about.gitlab.com/ - **Year Founded:** 2014 - **HQ Location:** San Francisco, California - **Twitter:** @gitlab (170,938 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/5101804/ (3,357 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Software Engineer, Senior Software Engineer - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 37% Mid-Market, 37% Small-Business #### What Are GitLab's Pros and Cons? **Pros:** - Ease of Use (43 reviews) - Features (42 reviews) - CI (36 reviews) - CD Integration (34 reviews) - Integrations (34 reviews) **Cons:** - Complexity (21 reviews) - Difficult Learning (19 reviews) - Confusing Interface (16 reviews) - Complex User Interface (15 reviews) - Learning Curve (13 reviews) ### 3. [OX Security](https://www.g2.com/products/ox-security/reviews) OX is redefining product security for the AI era. Founded by Neatsun Ziv and Lion Arzi, former Check Point executives, OX is the company behind VibeSec — the first AI-native vibe security platform. Unlike traditional “Shift Left” approaches that collapsed under AI’s speed, VibeSec makes software secure by default by preventing risks before they exist. Powered by the OX AI Data Lake and dynamic code-to-runtime context, OX Security delivers: Autonomous, embedded security that runs as fast as developers. Dynamic risk context that shrinks security backlogs before they spiral. Continuous alignment across code, cloud, APIs, and runtime. With OX, developers focus on building while security runs itself, giving enterprises complete confidence that every release ships secure. OX Security -Vendor desc (request to update): OX Security is the company behind VibeSec, an AI-native autonomous security platform built for the AI development era. Unlike traditional tools that chase vulnerabilities after code is written, VibeSec embeds dynamic security context directly into AI coding environments like Cursor and Copilot. The result: every line of code is secure by default. For the first time, security moves at the speed of AI-driven development, preventing vulnerabilities before they exist, shrinking backlogs with every commit, and making security a seamless part of the development flow. **Average Rating:** 4.8/5.0 **Total Reviews:** 51 **How Do G2 Users Rate OX Security?** - **Quality of Support:** 9.6/10 (Category avg: 9.2/10) - **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 8.9/10) - **Ease of Setup:** 9.0/10 (Category avg: 8.7/10) **Who Is the Company Behind OX Security?** - **Seller:** [OX Security](https://www.g2.com/sellers/ox-security) - **Year Founded:** 2021 - **HQ Location:** New York, USA - **LinkedIn® Page:** https://www.linkedin.com/company/ox-security/ (184 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Security Engineer - **Top Industries:** Financial Services, Information Technology and Services - **Company Size:** 63% Mid-Market, 25% Enterprise #### What Are OX Security's Pros and Cons? **Pros:** - Features (27 reviews) - Ease of Use (23 reviews) - Customer Support (22 reviews) - Integration Support (22 reviews) - Security (22 reviews) **Cons:** - Integration Issues (8 reviews) - Missing Features (8 reviews) - Complexity (5 reviews) - Inadequate Reporting (5 reviews) - Limited Cloud Integration (5 reviews) ### 4. [Check Point CloudGuard CNAPP](https://www.g2.com/products/check-point-cloudguard-cnapp/reviews) CloudGuard CNAPP provides you with more context to drive actionable security and smarter prevention, from code-to-cloud, across the application lifecycle. CloudGuard’s prevention-first approach protects applications and workloads throughout the software development lifecycle, and includes an effective risk management engine, with automated remediation prioritization, to allow users to focus on the security risks that matter. With CloudGuard's unified & modular platform , customers receive: Enhanced Cloud Security Posture Management Deep Workload Security Visibility at Scale with No Agents Enforcement of Least Privilege with Cloud Infrastructure Entitlement Management (CIEM) Runtime Protection for Cloud Workloads (CWPP) Context-Based Web Application and API Protection (WAF) Shift CNAPP Left to Secure Applications in the CI/CD Pipeline Context Graph Visualization & Cloud Detection and Response For more information on CloudGuard CNAPP, visit https://www.checkpoint.com/cloudguard/cnapp/ **Average Rating:** 4.5/5.0 **Total Reviews:** 131 **How Do G2 Users Rate Check Point CloudGuard CNAPP?** - **Quality of Support:** 8.6/10 (Category avg: 9.2/10) - **Has the product been a good partner in doing business?:** 8.9/10 (Category avg: 8.9/10) - **Ease of Setup:** 9.1/10 (Category avg: 8.7/10) **Who Is the Company Behind Check Point CloudGuard CNAPP?** - **Seller:** [Check Point Software Technologies](https://www.g2.com/sellers/check-point-software-technologies) - **Year Founded:** 1993 - **HQ Location:** Redwood City, CA - **Twitter:** @CheckPointSW (70,991 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/check-point-software-technologies/ (8,356 employees on LinkedIn®) - **Ownership:** NASDAQ:CHKP **Who Uses This Product?** - **Who Uses This:** Security Engineer, Software Engineer - **Top Industries:** Financial Services, Information Technology and Services - **Company Size:** 59% Enterprise, 34% Mid-Market #### What Are Check Point CloudGuard CNAPP's Pros and Cons? **Pros:** - Security (45 reviews) - Cloud Security (35 reviews) - Ease of Use (30 reviews) - Cloud Integration (29 reviews) - Comprehensive Security (29 reviews) **Cons:** - Improvement Needed (13 reviews) - Complexity (12 reviews) - Difficult Setup (10 reviews) - Integration Issues (10 reviews) - Poor Customer Support (10 reviews) ### 5. [Aikido Security](https://www.g2.com/products/aikido-security/reviews) Aikido Security is the developer-first security platform that unifies code, cloud, protection, and attack testing in one suite of best-in-class products. Built by developers for developers, Aikido helps teams of any size ship secure software faster, automate protection, and simulate real-world attacks with AI-driven precision. The platform’s proprietary AI cuts noise by 95%, delivers one-click fixes, and saves developers 10+ hours per week. Aikido Intel proactively uncovers vulnerabilities in open source packages before disclosure, helping secure more than 50,000 organizations worldwide, including Revolut, Niantic, Visma, Montblanc, and GoCardless. **Average Rating:** 4.6/5.0 **Total Reviews:** 141 **How Do G2 Users Rate Aikido Security?** - **Quality of Support:** 9.3/10 (Category avg: 9.2/10) - **Has the product been a good partner in doing business?:** 9.4/10 (Category avg: 8.9/10) - **Ease of Setup:** 9.5/10 (Category avg: 8.7/10) **Who Is the Company Behind Aikido Security?** - **Seller:** [Aikido Security](https://www.g2.com/sellers/aikido-security) - **Company Website:** https://aikido.dev - **Year Founded:** 2022 - **HQ Location:** Ghent, Belgium - **Twitter:** @AikidoSecurity (6,477 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/aikido-security/ (175 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** CTO, Founder - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 70% Small-Business, 18% Mid-Market #### What Are Aikido Security's Pros and Cons? **Pros:** - Ease of Use (78 reviews) - Security (55 reviews) - Features (52 reviews) - Easy Integrations (47 reviews) - Easy Setup (47 reviews) **Cons:** - Missing Features (19 reviews) - Expensive (17 reviews) - Limited Features (16 reviews) - Pricing Issues (15 reviews) - Lacking Features (14 reviews) ### 6. [SonarQube](https://www.g2.com/products/sonarqube/reviews) Sonar, the industry standard for code verification and automated code review, helps reduce outages, improve security, and lower risks associated with AI and agentic coding. As an independent verification platform, Sonar enables organizations to securely develop at the speed of AI. Sonar is the foundation for high-performance software engineering, analyzing over 750 billion lines of code daily to ensure applications are secure, reliable, and maintainable. Rooted in the open source community, Sonar is trusted by 7M+ developers globally, including teams at ServiceNow, Booking.com, Deutsche Bank, AstraZeneca, and Ford Motor Company. **Average Rating:** 4.4/5.0 **Total Reviews:** 138 **How Do G2 Users Rate SonarQube?** - **Quality of Support:** 8.1/10 (Category avg: 9.2/10) - **Has the product been a good partner in doing business?:** 8.3/10 (Category avg: 8.9/10) - **Ease of Setup:** 8.1/10 (Category avg: 8.7/10) **Who Is the Company Behind SonarQube?** - **Seller:** [SonarSource Sàrl](https://www.g2.com/sellers/sonarsource-sarl) - **Company Website:** https://www.sonarsource.com - **Year Founded:** 2008 - **HQ Location:** Geneva, Switzerland - **Twitter:** @SonarSource (10,929 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/sonarsource/ (929 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** DevOps Engineer, Software Engineer - **Top Industries:** Information Technology and Services, Computer Software - **Company Size:** 42% Enterprise, 39% Mid-Market #### What Are SonarQube's Pros and Cons? **Pros:** - Code Quality (24 reviews) - Features (20 reviews) - Issue Identification (19 reviews) - Ease of Use (18 reviews) - Easy Integrations (18 reviews) **Cons:** - Software Bugs (12 reviews) - Complex Configuration (10 reviews) - False Positives (10 reviews) - Complexity (8 reviews) - Complex Setup (8 reviews) ### 7. [Microsoft Defender for Cloud](https://www.g2.com/products/microsoft-defender-for-cloud/reviews) Microsoft Defender for Cloud is a cloud native application protection platform for multicloud and hybrid environments with comprehensive security across the full lifecycle, from development to runtime. **Average Rating:** 4.4/5.0 **Total Reviews:** 280 **How Do G2 Users Rate Microsoft Defender for Cloud?** - **Quality of Support:** 8.6/10 (Category avg: 9.2/10) - **Has the product been a good partner in doing business?:** 8.5/10 (Category avg: 8.9/10) - **Ease of Setup:** 8.6/10 (Category avg: 8.7/10) **Who Is the Company Behind Microsoft Defender for Cloud?** - **Seller:** [Microsoft](https://www.g2.com/sellers/microsoft) - **Year Founded:** 1975 - **HQ Location:** Redmond, Washington - **Twitter:** @microsoft (13,105,638 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/microsoft/ (227,697 employees on LinkedIn®) - **Ownership:** MSFT **Who Uses This Product?** - **Who Uses This:** Saas Consultant, Software Engineer - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 39% Mid-Market, 35% Enterprise #### What Are Microsoft Defender for Cloud's Pros and Cons? **Pros:** - Security (121 reviews) - Comprehensive Security (92 reviews) - Cloud Security (71 reviews) - Vulnerability Detection (63 reviews) - Threat Detection (57 reviews) **Cons:** - Complexity (27 reviews) - Expensive (24 reviews) - Delayed Detection (22 reviews) - False Positives (19 reviews) - Improvement Needed (19 reviews) ### 8. [Semgrep](https://www.g2.com/products/semgrep/reviews) Semgrep is a modern static analysis (SAST), software composition analysis (SCA), and secrets detection platform designed for both developers and security teams. It combines fast, deterministic analysis with context-aware AI that triages findings like a senior security engineer. The AI Assistant helps reduce false positives, prioritize meaningful results, and offers clear remediation guidance. Its “Memories” feature learns from past decisions to further reduce triage noise over time. Semgrep also supports deep analysis of transitive dependencies, not just direct ones, helping teams surface and address hidden risks in their supply chain. It integrates well into modern development workflows and is easy to customize across environments. **Average Rating:** 4.6/5.0 **Total Reviews:** 55 **How Do G2 Users Rate Semgrep?** - **Quality of Support:** 8.8/10 (Category avg: 9.2/10) - **Has the product been a good partner in doing business?:** 9.6/10 (Category avg: 8.9/10) - **Ease of Setup:** 9.4/10 (Category avg: 8.7/10) **Who Is the Company Behind Semgrep?** - **Seller:** [Semgrep](https://www.g2.com/sellers/semgrep) - **Company Website:** https://semgrep.dev - **Year Founded:** 2017 - **HQ Location:** San Francisco, US - **Twitter:** @semgrep (4,304 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/returntocorp (238 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Computer Software - **Company Size:** 45% Enterprise, 42% Mid-Market #### What Are Semgrep's Pros and Cons? **Pros:** - Ease of Use (16 reviews) - Features (14 reviews) - Vulnerability Detection (13 reviews) - Scanning Efficiency (12 reviews) - Security (12 reviews) **Cons:** - Not User-Friendly (7 reviews) - Limited Features (6 reviews) - Difficult Learning (5 reviews) - Lack of Guidance (5 reviews) - Learning Curve (5 reviews) ### 9. [GitGuardian](https://www.g2.com/products/gitguardian/reviews) GitGuardian is an end-to-end NHI security platform designed to help organizations strengthen their Non-Human Identity (NHI) security posture and address compliance standards and regulations. As attackers increasingly target NHIs, such as service accounts, service principals, and applications, protecting and managing these critical assets has become paramount. NHIs rely on “secrets” like API keys and certificates for authentication, and their rapid proliferation has led to significant secrets sprawl. GitGuardian’s platform is built on two core pillars: Secrets Security and NHI Governance, delivering a holistic approach to NHI security. With Secrets Security, GitGuardian aims to eliminate leaks and sprawl, detecting compromised or misused secrets across both public and internal environments. This foundation of NHI security is strengthened by monitoring for incidents, policy violations, and illegitimate use of secrets. GitGuardian offers three powerful products under its Secrets Security umbrella. GitGuardian’s Secrets Detection tackles internal secrets sprawl by identifying sensitive data in source code and developer productivity tools. The platform supports over 420 types of secrets, including API keys, private keys, and database credentials. With a robust policy engine, security teams can enforce rules across major version control systems (VCSs) like GitHub, GitLab, BitBucket, and Azure DevOps, CI/CD tools such as Jenkins, Travis CI as well as tools like Slack, Jira, container registries, and more. GitGuardian Public Monitoring scans public GitHub repositories, detecting sensitive information in both organizational and developers' public personal repos. This is crucial, as 80% of corporate secrets leaked on public GitHub stem from personal accounts. GitGuardian Honeytoken deploys decoy secrets that lure attackers looking for active secrets across your assets. Any unauthorized access attempts will trigger immediate alerts, enabling rapid detection and response during the software development lifecycle. With NHI Governance, GitGuardian offers a centralized inventory of secrets, tracking their context and usage. This enables teams to detect high-risk secrets, manage their rotation, and leverage analytics to enhance the overall NHI security posture. Together, Secrets Security and NHI Governance work symmetrically: one track focuses on detecting compromised secrets, while the other manages legitimate usages of secrets and their lifecycle. Trusted by over 600,000 developers and recognized as the top security app on GitHub Marketplace, GitGuardian is the choice of leading organizations like Snowflake, ING, BASF, and Bouygues Telecom, ensuring robust protection for their sensitive secrets. **Average Rating:** 4.8/5.0 **Total Reviews:** 255 **How Do G2 Users Rate GitGuardian?** - **Quality of Support:** 9.2/10 (Category avg: 9.2/10) - **Has the product been a good partner in doing business?:** 8.9/10 (Category avg: 8.9/10) - **Ease of Setup:** 9.5/10 (Category avg: 8.7/10) **Who Is the Company Behind GitGuardian?** - **Seller:** [GitGuardian](https://www.g2.com/sellers/gitguardian-c1eb71ef-0ed6-4024-9679-56d9bee1fe3e) - **Company Website:** https://www.gitguardian.com/ - **Year Founded:** 2017 - **HQ Location:** Paris, Île-de-France - **Twitter:** @GitGuardian (6,055 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/gitguardian (176 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Software Engineer, Software Developer - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 84% Small-Business, 12% Mid-Market #### What Are GitGuardian's Pros and Cons? **Pros:** - Alert Notifications (18 reviews) - Security (17 reviews) - Vulnerability Detection (11 reviews) - Git Integration (9 reviews) - Accuracy (8 reviews) **Cons:** - False Positives (12 reviews) - Inefficient Notifications (4 reviews) - Limited Customization (3 reviews) - Confusing Interface (2 reviews) - Difficulty for Beginners (2 reviews) ### 10. [Jit](https://www.g2.com/products/jit/reviews) Jit is redefining application security by introducing the first Agentic AppSec Platform, seamlessly blending human expertise with AI-driven automation. Designed for modern development teams, Jit empowers organizations to proactively manage security risks across the entire software development lifecycle.​ AI-Powered Agents Jit's AI Agents, such as SERA (Security Evaluation and Remediation Agent) and COTA (Communication, Ops, and Ticketing Agent), collaborate with your teams to automate vulnerability triage, risk assessment, and remediation processes, significantly reducing manual workloads. ​ Comprehensive Security Scanning Achieve full-stack security coverage with integrated scanners for SAST, DAST, SCA, IaC, CSPM, and more. Jit's platform ensures continuous monitoring and immediate feedback on code changes, facilitating rapid identification and resolution of security issues. ​ Developer-Centric Experience With integrations into popular IDEs and CI/CD pipelines, Jit provides developers with contextual security insights directly within their workflows, promoting a shift-left approach without disrupting productivity. ​ Agentic AI for AppSec Teams Risk-Based Prioritization Utilizing the Model Context Protocol (MCP), Jit evaluates vulnerabilities in the context of runtime environments, business impact, and compliance requirements, enabling teams to focus on the most critical risks. ​ Seamless Integrations Jit integrates with a wide array of tools, including GitHub, GitLab, AWS, Azure, GCP, Jira, Slack, and more, ensuring that security processes are embedded within your existing technology stack. ​ **Average Rating:** 4.5/5.0 **Total Reviews:** 43 **How Do G2 Users Rate Jit?** - **Quality of Support:** 9.3/10 (Category avg: 9.2/10) - **Has the product been a good partner in doing business?:** 9.6/10 (Category avg: 8.9/10) - **Ease of Setup:** 9.2/10 (Category avg: 8.7/10) **Who Is the Company Behind Jit?** - **Seller:** [jit](https://www.g2.com/sellers/jit) - **Year Founded:** 2021 - **HQ Location:** Boston, MA - **Twitter:** @jit_io (522 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/jit/ (151 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Computer Software, Financial Services - **Company Size:** 44% Mid-Market, 42% Small-Business #### What Are Jit's Pros and Cons? **Pros:** - Security (10 reviews) - Easy Integrations (8 reviews) - Ease of Use (7 reviews) - Efficiency (7 reviews) - Integration Support (7 reviews) **Cons:** - Integration Issues (4 reviews) - Limited Features (4 reviews) - Limited Integration (4 reviews) - Poor Documentation (4 reviews) - Complexity (3 reviews) ### 11. [GuardRails](https://www.g2.com/products/guardrails-guardrails/reviews) GuardRails is an end-to-end security platform that makes AppSec easier for both security and development teams. We scan, detect, and provide real-time guidance to fix vulnerabilities early. Trusted by hundreds of teams around the world to build safer apps, GuardRails integrates seamlessly into the developers’ workflow, quietly scans as they code, and shows how to fix security issues on the spot via Just-in-Time training. GuardRails commits to keeping the noise low and only reporting high-impact vulnerabilities that are relevant to your organization. GuardRails helps organizations shift security everywhere and build a strong DevSecOps pipeline, so they can go faster to market without risking security. **Average Rating:** 4.3/5.0 **Total Reviews:** 29 **How Do G2 Users Rate GuardRails?** - **Quality of Support:** 8.5/10 (Category avg: 9.2/10) - **Has the product been a good partner in doing business?:** 9.4/10 (Category avg: 8.9/10) - **Ease of Setup:** 8.5/10 (Category avg: 8.7/10) **Who Is the Company Behind GuardRails?** - **Seller:** [GuardRails](https://www.g2.com/sellers/guardrails) - **Year Founded:** 2017 - **HQ Location:** Singapore, Singapore - **Twitter:** @guardrailsio (1,554 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/13599521 (13 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Financial Services - **Company Size:** 52% Small-Business, 48% Mid-Market #### What Are GuardRails's Pros and Cons? **Pros:** - Security (13 reviews) - Vulnerability Detection (11 reviews) - Ease of Use (9 reviews) - Error Reduction (9 reviews) - Threat Detection (9 reviews) **Cons:** - Missing Features (4 reviews) - Time Management (3 reviews) - Bug Issues (2 reviews) - Dashboard Issues (2 reviews) - False Positives (2 reviews) ### 12. [Assembla](https://www.g2.com/products/assembla/reviews) Assembla is the most secure version control and project collaboration platform in the world. We provide secure cloud hosting for Subversion, Perforce and Git repositories with integrated project management for more than 5,500 customers around the globe. Assembla helps development teams meet and even exceed HIPAA, SOC 2, PCI and GDPR compliance standards with our best practice VCS. Embrace agile, meet compliance, and stay innovative while managing all of your projects and source code from a central control point with industry-leading compliance and security. **Average Rating:** 4.1/5.0 **Total Reviews:** 125 **How Do G2 Users Rate Assembla?** - **Quality of Support:** 8.2/10 (Category avg: 9.2/10) - **Has the product been a good partner in doing business?:** 8.3/10 (Category avg: 8.9/10) - **Ease of Setup:** 8.6/10 (Category avg: 8.7/10) **Who Is the Company Behind Assembla?** - **Seller:** [Assembla](https://www.g2.com/sellers/assembla) - **Year Founded:** 2005 - **HQ Location:** San Antonio, TX - **Twitter:** @assembla (3,822 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/339775/ (20 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Software Engineer - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 47% Small-Business, 43% Mid-Market ## What Is Secure Code Review Software? [DevSecOps Software](https://www.g2.com/categories/devsecops) ## What Software Categories Are Similar to Secure Code Review Software? - [Peer Code Review Software](https://www.g2.com/categories/peer-code-review) - [Static Code Analysis Tools](https://www.g2.com/categories/static-code-analysis) - [Vulnerability Scanner Software](https://www.g2.com/categories/vulnerability-scanner) - [Static Application Security Testing (SAST) Software](https://www.g2.com/categories/static-application-security-testing-sast) - [Dynamic Application Security Testing (DAST) Software](https://www.g2.com/categories/dynamic-application-security-testing-dast) - [Software Composition Analysis Tools](https://www.g2.com/categories/software-composition-analysis) - [AI AppSec Assistants](https://www.g2.com/categories/ai-appsec-assistants)