Tool Reviews
In-depth guides and analysis on tool reviews from the Safeguard engineering team.
16 articles
GitLab Ultimate Security Features: Built-In Security Done Pragmatically
A review of GitLab Ultimate's security scanning features covering SAST, DAST, dependency scanning, container scanning, and how integrated security compares to best-of-breed tools.
FOSSA Review: Open Source License Compliance at Enterprise Scale
A review of FOSSA for open source license compliance and vulnerability management, covering license detection, policy automation, and enterprise integration patterns.
Mend.io (WhiteSource): The Renamed SCA Veteran
A review of Mend.io, formerly WhiteSource, covering its SCA capabilities, Renovate integration, automated remediation, and position in the crowded dependency scanning market.
Tern: Container SBOM Generation Through Layer Analysis
A review of Tern, the open source tool that generates SBOMs by inspecting container image layers, including its strengths, limitations, and where it fits in your toolchain.