Try our new research platform with insights from 80,000+ expert users

Apiiro vs Legit Security comparison

Apiiro and Legit Security are both solutions in the Software Supply Chain Security category. Apiiro is ranked #8 with an average rating of 8.5, while Legit Security is ranked #7 with an average rating of 10.0. Apiiro holds a 4.9% mindshare in SSCS, compared to Legit Security’s 4.5% mindshare. Additionally, 100% of Apiiro users are willing to recommend the solution, compared to 100% of Legit Security users who would recommend it.
Apiiro
Read 3 Apiiro reviews
  • 475 Views
  • 133 Comparison Views
100% willing to recommend
Legit Security
Read 4 Legit Security reviews
  • 508 Views
  • 103 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jun 29, 2025

Legit Security and Apiiro are competitive offerings in the cybersecurity domain. Legit Security excels in pricing and support, while Apiiro is superior due to its robust feature set.

Features: Legit Security offers comprehensive vulnerability management, strong integration capabilities, and responsive support. Apiiro provides extensive risk assessment, adaptable policy management, and advanced automation.

Ease of Deployment and Customer Service: Legit Security ensures straightforward integration with existing platforms and maintains a responsive support team. Apiiro, despite a complex deployment process, offers robust documentation and proactive customer service.

Pricing and ROI: Legit Security is recognized for its competitive setup costs, leading to a rapid ROI with a cost-efficient model. Apiiro, requiring a higher initial investment, provides long-term value with advanced features and scalability.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Apiiro vs. Legit Security Report (Updated: June 2025).
Buyer's Guide
Apiiro vs. Legit Security
June 2025
Download the complete report
Helped 860,592 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Apiiro
Ranking in Software Supply Chain Security
8th
Ranking in Application Security Posture Management (ASPM)
4th
Average Rating
8.0
Reviews Sentiment
6.4
Number of Reviews
3
Ranking in other categories
Static Application Security Testing (SAST) (20th), Software Composition Analysis (SCA) (11th), API Security (11th), Risk-Based Vulnerability Management (12th)
Legit Security
Ranking in Software Supply Chain Security
7th
Ranking in Application Security Posture Management (ASPM)
5th
Average Rating
10.0
Reviews Sentiment
7.8
Number of Reviews
4
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2025, in the Software Supply Chain Security category, the mindshare of Apiiro is 4.9%, down from 5.5% compared to the previous year. The mindshare of Legit Security is 4.5%, up from 4.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Software Supply Chain Security
 

Featured Reviews

Kunal M - PeerSpot reviewer
Comprehensive risk analysis helps identify key performance trends but report access needs improvement
My first feedback for Apiiro is that it is very slow, extremely slow. The moment I select from the entire list of repositories in my vertical, which is almost more than 400 repositories, it takes a lot of time for me to load the report. Sometimes it fails. I do not have Role-Based Access Control (RBAC). It's only given to the application security team, and Apiiro as a vendor does not have the rollback access control enabled for the clients, so that would have given me access to the reports tab, which would have made my life easier. Currently, I have to go to the risks tab to pull out all this information. I started exploring dashboards with Copilot. I need to reach out to the Apiiro teams to see if I can get an access token so that I can pull out a Power BI dashboard. I think Apiiro definitely has its own capabilities, but if there are access tokens that teams can use to build a custom dashboard, that would be great. This might already exist, but that is something which will ease the vulnerability management day-to-day activities.
Read full review
Tim Crothers - PeerSpot reviewer
Provides strong visibility, straightforward integration, and reduces the risk of attacks
Legit Security is a product that hyper-focuses on the various aspects of the software development pipeline. For example, if an engineer spins off a new project and stands up a new Git project, Legit automatically detects it, connects Snyk and other tools, and ensures the engineering team doesn't have to think about it. This way, we stay on top of security from the beginning. On the other hand, Legit provides a clear view of the controls around repositories. We have standards requiring code reviews and similar practices, and Legit shows us whether these are being followed. Additionally, Legit helps us identify unmaintained repositories, which often arise when engineering teams try something and leave it behind. This knowledge allows us to determine the appropriate action for these neglected projects. One area where Legit falls short is secret detection. While it functions well overall, the feature has a 10-20 percent false positive rate, requiring some manual intervention. Almost everything else works flawlessly. The true value proposition of Legit lies not in its features but in its ability to support our product security program's focus on creating guardrails instead of toll gates. Unlike traditional programs that require security reviews at specific stages, hindering development flow, we strive to partner with the product engineering team to ship secure code seamlessly within their existing workflows. Legit plays a crucial role in this by automatically notifying us of new projects, eliminating the need for manual communication. This partnership approach, enabled by Legit, allows us to work much closer with our engineering teams than ever before.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The workflow automation is likely the best aspect of the solution."
"Apiiro's secrets detection feature has saved us several times, which we appreciate greatly."
"Legit has increased my security posture to a level I couldn't achieve before. I don't need to worry as much about what's happening within my developer environments. I can rest assured that my vulnerabilities are being detected."
"Legit has had a positive effect on our overall security posture."
"We implemented Legit Security to gain visibility into all development teams and ensure that consistent controls are in place and accounted for on every route."
"The true value proposition of Legit lies not in its features but in its ability to support our product security program's focus on creating guardrails instead of toll gates."
 

Cons

"User management is a little bit clunky."
"I would like support for our self-hosted Git server, other than GitHub, just regular Git."
"One issue is that engineering teams don't always embed secrets in the same way, making it difficult for the tool to consistently identify them."
"The one we're working on right now is the ability to dynamically rerun development teams and groups."
"I would like them to have their own static code scanner, and I'd like them to have their own open-source software scanners."
"Legit Security could do a little better with detecting publicly exposed keys. It's not bad. The detections that they are running get to everything eventually, but it would be great if they could increase some of that awareness."
 

Pricing and Cost Advice

Information not available
"The pricing is reasonable."
report
See which vendors are best for you
Use our free recommendation engine to learn which Software Supply Chain Security solutions are best for your needs.
See recommendations
860,592 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
20%
Financial Services Firm
12%
Comms Service Provider
8%
Manufacturing Company
8%
Computer Software Company
19%
Financial Services Firm
13%
University
12%
Pharma/Biotech Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
No data available
 

Questions from the Community

What do you like most about Apiiro?
Apiiro's secrets detection feature has saved us several times, which we appreciate greatly.
See all answers
What is your experience regarding pricing and costs for Apiiro?
My understanding is the pricing is pretty competitive.
See all answers
What needs improvement with Apiiro?
Apiiro recently integrated SaaS, and we would love to see them expand on that. They provide many integrations to different products, including SaaS products such as Snyk. Ideally, Apiiro would incl...
See all answers
What do you like most about Legit Security?
The true value proposition of Legit lies not in its features but in its ability to support our product security program's focus on creating guardrails instead of toll gates.
See all answers
What is your experience regarding pricing and costs for Legit Security?
The pricing is reasonable.
See all answers
What needs improvement with Legit Security?
Legit Security's secret detection works. However, there are some limitations to its effectiveness. One issue is that engineering teams don't always embed secrets in the same way, making it difficul...
See all answers
 

Comparisons

Snyk vs Apiiro Logo
Snyk vs Apiiro
Compared 28% of the time
Cycode vs Apiiro Logo
Cycode vs Apiiro
Compared 19% of the time
Ox Security vs Apiiro Logo
Ox Security vs Apiiro
Compared 15% of the time
Wiz Code vs Apiiro Logo
Wiz Code vs Apiiro
Compared 8% of the time
SonarQube Server (formerly SonarQube) vs Apiiro Logo
SonarQube Server (formerly SonarQube) vs Apiiro
Compared 8% of the time
More Apiiro Competitors
Cycode vs Legit Security Logo
Cycode vs Legit Security
Compared 23% of the time
Ox Security vs Legit Security Logo
Ox Security vs Legit Security
Compared 22% of the time
Snyk vs Legit Security Logo
Snyk vs Legit Security
Compared 14% of the time
ArmorCode vs Legit Security Logo
ArmorCode vs Legit Security
Compared 11% of the time
Chainguard vs Legit Security Logo
Chainguard vs Legit Security
Compared 10% of the time
More Legit Security Competitors
 

Product Reports

Buyer's Guide
Application Security Posture Management (ASPM)
June 2025
Apiiro reportDownload Apiiro product report
Buyer's Guide
Legit Security
June 2025
Legit Security reportDownload Legit Security product report
 

Also Known As

Apiiro Control Plane (ASOC), Apiiro API Security (SAST), Apiiro Open Source (SCA)
No data available
 

Overview

Apiiro is the leader in application security posture management (ASPM), unifying risk visibility, prioritization, and remediation with deep code analysis and runtime context.

Companies like Morgan Stanley, SoFi, Rakuten, and Navan leverage Apiiro's ASPM to...

Get complete application and risk visibility: Apiiro takes a deep, code-based approach to ASPM. Its Cloud Application Security Platform analyzes source code and pulls in runtime context to build a continuous, graph-based inventory of application and software supply chain components.

Prioritize risks with code-to-runtime context: With its proprietary Risk Graph™️, Apiiro contextualizes security alerts from third-party tools and native security solutions based on the likelihood and impact of risk to uniquely minimize alert backlogs and triage time by 95%.

Fix and prevent risks that matter—faster: By tying risks to code owners, providing LLM-enriched remediation guidance, and embedding risk-based guardrails directly into developer tools and workflows, Apiiro improves remediation times (MTTR) by up to 85%.

Apiiro's native security solutions include API security testing in code, secrets detection and validation, software bill of materials (SBOM) generation, sensitive data exposure prevention, software composition analysis (SCA), and CI/CD and SCM security.



Apiiro

Legit Security provides application security posture management platform that secures application delivery from code to cloud and protects an organization's software supply chain from attack. The platform’s unified application security control plane and automated SDLC discovery and analysis capabilities provide visibility and security control over rapidly changing environments and allow security issues to be prioritized based on context and business criticality to improve security team efficiency and effectiveness.

Legit Security
 

Sample Customers

Morgan Stanley, Rakuten, Jack Henry, SoFi, Colgate, Navan
Google, NYSE, Kraft-Hienz, Takeda Pharmaceuticals, and many other large enterprise and Fortune 500 customers. Learn more by going to: https://www.legitsecurity.com/...
Buyer's Guide
Apiiro vs. Legit Security
June 2025
Free Report: Apiiro vs. Legit Security
Find out what your peers are saying about Apiiro vs. Legit Security and other solutions. Updated: June 2025.
DOWNLOAD NOW
860,592 professionals have used our research since 2012.
See our Apiiro vs. Legit Security report.

We monitor all Software Supply Chain Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.