Try our new research platform with insights from 80,000+ expert users
GitHub Advanced Security Logo

GitHub Advanced Security pros and cons

Vendor: GitHub
4.4 out of 5
Leave a review

Pros & Cons summary

GitHub Advanced Security prevents accidental exposure of user passwords and sensitive information in code, enhances developer experience, and offers ecosystem extensibility. Significant features include security and dependency scans, cost-effectiveness, scalability, and reliable AI findings via CodeQL. However, it lacks a centralized dashboard, timely open-source updates, broader language integration, and refined vulnerability categorization. API security improvement is needed, along with a customized scanning ruleset for comprehensive protection.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

GitHub Advanced Security prevents accidental exposure of passwords or sensitive information in code or reports.
Developer experience and extensibility of the ecosystem are highly valued.
Advanced security, including security and dependency scans, is a major deciding factor for customers.
Scalability is rated ten out of ten as it efficiently handles new applications with analysis features.
Artificial intelligence and CodeQL utilization provide more reliable findings with fewer false positives.

CONS

GitHub Advanced Security could benefit from a centralized dashboard to view reports of all projects on one platform.
The categorization and emphasis on specific vulnerabilities need a more refined approach.
The deployment process needs to be simplified for easier adoption.
There is a need for more support for various programming languages, potentially including DST features.
Open-source security vulnerabilities are not being updated in a timely manner.
 

GitHub Advanced Security Pros review quotes

reviewer2301468 - PeerSpot reviewer
Nov 6, 2023
The most valuable is the developer experience and the extensibility of the overall ecosystem.
Read full review
reviewer2395785 - PeerSpot reviewer
Jul 1, 2024
GitHub Advanced Security uses artificial intelligence in the backend, specifically CodeQL, to analyze code and provide fewer but more reliable findings, so there are less false positives.
Read full review
PA
Feb 5, 2024
It is a stable solution...It is a scalable solution as it can handle new applications along with the analysis part.
Read full review
Buyer's Guide
GitHub Advanced Security
September 2025
Free Report: GitHub Advanced Security Reviews and More
Learn what your peers think about GitHub Advanced Security. Get advice and tips from experienced pros sharing their opinions. Updated: September 2025.
DOWNLOAD NOW
868,787 professionals have used our research since 2012.
MA
May 7, 2025
GitHub Advanced Security is ten out of ten scalable.
Read full review
AV
Mar 31, 2025
The initial setup was straightforward and completed in a matter of minutes.
Read full review
VN
Jan 24, 2024
Dependency scanning is a valuable feature.
Read full review
Sabna Sainudeen - PeerSpot reviewer
Feb 5, 2025
GitHub Advanced Security is a very developer-friendly solution that is integrated within my development environment.
Read full review
reviewer2329650 - PeerSpot reviewer
Jan 9, 2024
The product's most valuable features are security scan, dependency scan, and cost-effectiveness.
Read full review
AS
Aug 19, 2025
The best features of GitHub Advanced Security are its flexibility and the multiple options it has compared to other tools.
Read full review
Sirinat-Paphatsirinatthi - PeerSpot reviewer
Jan 15, 2024
GitHub provides advanced security, which is why the customers choose this tool; it allows them to rely solely on GitHub as one platform for everything they need.
Read full review
Show 1 more reviews (out of 11)
 

GitHub Advanced Security Cons review quotes

reviewer2301468 - PeerSpot reviewer
Nov 6, 2023
A more refined approach, categorizing and emphasizing specific vulnerabilities, would be beneficial.
Read full review
reviewer2395785 - PeerSpot reviewer
Jul 1, 2024
Maybe make it compatible with more programming languages. Have a customized ruleset where the end-user can create their own rules for scanning.
Read full review
PA
Feb 5, 2024
The deployment part of the product is an area of concern that needs to be made easier from an improvement perspective.
Read full review
Buyer's Guide
GitHub Advanced Security
September 2025
Free Report: GitHub Advanced Security Reviews and More
Learn what your peers think about GitHub Advanced Security. Get advice and tips from experienced pros sharing their opinions. Updated: September 2025.
DOWNLOAD NOW
868,787 professionals have used our research since 2012.
MA
May 7, 2025
The reporting feature might need improvement. While it integrates seamlessly with my workflow, it doesn't provide management with oversight, such as statistics and the number of vulnerabilities.
Read full review
AV
Mar 31, 2025
For GitHub Advanced Security, I would like to see more support for various programming languages.
Read full review
VN
Jan 24, 2024
The customizations are a little bit difficult.
Read full review
Sabna Sainudeen - PeerSpot reviewer
Feb 5, 2025
Open-source security vulnerabilities are not getting updated in a timely manner.
Read full review
reviewer2329650 - PeerSpot reviewer
Jan 9, 2024
There could be DST features included in the product.
Read full review
AS
Aug 19, 2025
An area of GitHub Advanced Security that has room for improvement is customization.
Read full review
Sirinat-Paphatsirinatthi - PeerSpot reviewer
Jan 15, 2024
The report limitations are the main issue.
Read full review
Show 1 more reviews (out of 11)

Product Categories

Product Categories
Application Security Tools

Popular Comparisons

Popular Comparisons
SonarQube Server (formerly SonarQube) vs GitHub Advanced Security Logo
SonarQube Server (formerly SonarQube) vs GitHub Advanced Security
GitLab vs GitHub Advanced Security Logo
GitLab vs GitHub Advanced Security
Snyk vs GitHub Advanced Security Logo
Snyk vs GitHub Advanced Security
Checkmarx One vs GitHub Advanced Security Logo
Checkmarx One vs GitHub Advanced Security
Veracode vs GitHub Advanced Security Logo
Veracode vs GitHub Advanced Security
Mend.io vs GitHub Advanced Security Logo
Mend.io vs GitHub Advanced Security
OpenText Core Application Security vs GitHub Advanced Security Logo
OpenText Core Application Security vs GitHub Advanced Security
Sonatype Lifecycle vs GitHub Advanced Security Logo
Sonatype Lifecycle vs GitHub Advanced Security
HCL AppScan vs GitHub Advanced Security Logo
HCL AppScan vs GitHub Advanced Security
PortSwigger Burp Suite Professional vs GitHub Advanced Security Logo
PortSwigger Burp Suite Professional vs GitHub Advanced Security
Qualys Web Application Scanning vs GitHub Advanced Security Logo
Qualys Web Application Scanning vs GitHub Advanced Security
GitHub vs GitHub Advanced Security Logo
GitHub vs GitHub Advanced Security
GitGuardian Platform vs GitHub Advanced Security Logo
GitGuardian Platform vs GitHub Advanced Security
Contrast Security Assess vs GitHub Advanced Security Logo
Contrast Security Assess vs GitHub Advanced Security
Fortify Application Defender vs GitHub Advanced Security Logo
Fortify Application Defender vs GitHub Advanced Security
See all alternatives

Product Categories

Product Categories
Application Security Tools

Popular Comparisons

Popular Comparisons
SonarQube Server (formerly SonarQube) vs GitHub Advanced Security Logo
SonarQube Server (formerly SonarQube) vs GitHub Advanced Security
GitLab vs GitHub Advanced Security Logo
GitLab vs GitHub Advanced Security
Snyk vs GitHub Advanced Security Logo
Snyk vs GitHub Advanced Security
Checkmarx One vs GitHub Advanced Security Logo
Checkmarx One vs GitHub Advanced Security
Veracode vs GitHub Advanced Security Logo
Veracode vs GitHub Advanced Security
Mend.io vs GitHub Advanced Security Logo
Mend.io vs GitHub Advanced Security
OpenText Core Application Security vs GitHub Advanced Security Logo
OpenText Core Application Security vs GitHub Advanced Security
Sonatype Lifecycle vs GitHub Advanced Security Logo
Sonatype Lifecycle vs GitHub Advanced Security
HCL AppScan vs GitHub Advanced Security Logo
HCL AppScan vs GitHub Advanced Security
PortSwigger Burp Suite Professional vs GitHub Advanced Security Logo
PortSwigger Burp Suite Professional vs GitHub Advanced Security
Qualys Web Application Scanning vs GitHub Advanced Security Logo
Qualys Web Application Scanning vs GitHub Advanced Security
GitHub vs GitHub Advanced Security Logo
GitHub vs GitHub Advanced Security
GitGuardian Platform vs GitHub Advanced Security Logo
GitGuardian Platform vs GitHub Advanced Security
Contrast Security Assess vs GitHub Advanced Security Logo
Contrast Security Assess vs GitHub Advanced Security
Fortify Application Defender vs GitHub Advanced Security Logo
Fortify Application Defender vs GitHub Advanced Security
See all alternatives
Related questions
  • 182
If you had to both encrypt and compress data during transmission, which would you do first and why?
  • 17
When evaluating Application Security, what aspect do you think is the most important to look for?
  • 84
What are the Top 5 cybersecurity trends in 2022?
  • 104
What are the threats associated with using ‘bogus’ cybersecurity tools?
  • 31
We're evaluating Tripwire, what else should we consider?
  • 11
Which application security solutions include both vulnerability scans and quality checks?
  • 559
Is SonarQube the best tool for static analysis?
  • 10
Why Do I Need Application Security Software?
  • 58
Which Email Security enterprise solution would you choose: Cisco Secure Email vs Forcepoint Email Security vs Barracuda Email Security Gateway?
  • 23
SAST vs. DAST: Which is better for application security testing?