Check Point CloudGuard Code Security Pros and Cons

For my experience this is only the agent based workload vulnerability detection for kubernetes application.it will assess the images and application code before pushing into the production.it will help help us to fix application vulnerabilities to reduce the application vulnerability risk Review collected by and hosted on G2.com.

It will support only on before build the image.

It will work on agent based Review collected by and hosted on G2.com.

It will have the scan engine module for assessing the application codes and fix the vulnerabilities before we build the image.

We can able to integrate CI/CD pipeline and secure the push and pull of every code string in the repository. Review collected by and hosted on G2.com.

The UI functions of the code security portal is not good.

It is supported only on agent mode detection. Review collected by and hosted on G2.com.

I appreciate the features of code analysis; it's user-friendly, and the GUI is awesome. We've received excellent support from the Check Point team. In our organization, it helps us secure our code effectively Review collected by and hosted on G2.com.

CloudGuard Code Security might be the complexity involved in setting it up initially and configuring it, which could demand substantial expertise and resources to make the most of its capabilities efficiently. Review collected by and hosted on G2.com.

The scanning module will support the package level vulnerabilities and hard-coded secrets in code level.

The scanning engine will support the custom builders rulesets to assess the codes and maintain the quality of application codes. Review collected by and hosted on G2.com.

Sometimes the engine will find the external application API urls as malicious link .

The scanning exposure module will limited. Review collected by and hosted on G2.com.

The dashboard of this module is more valuable and interactive in terms of failed controls. The engine is capable to scan the builded images and find the package level vulnerability, hardcorded secrets in the application code & any malicious URL's to be addressed. Review collected by and hosted on G2.com.

Sometimes the reported findings doesn't have the fixing. Review collected by and hosted on G2.com.

The engine scans will supports the on demand scand, which we installed agents on developers system and we can enforce the policy for build prevention based on contains critical vulnerabilities. Review collected by and hosted on G2.com.

The engine will not detect or prevent the vulnerabilities once the code is builded.

Console having some UI bugs Review collected by and hosted on G2.com.

Using it from quite a long time and as working cloud and network security domain this tool has been great help and evident in protecting and helping in identifying threats to the code and thorough monitoring. Review collected by and hosted on G2.com.

As per the my experience till now. There is no such dislikes about Checkpoint Cloudguard Code security from my side but as always there is always room for improvement. Review collected by and hosted on G2.com.

The code scanning module and its rulesets are fully customisable and user friendly. It has the capability to support the CICD pipeline to integrate and secure our application deployment workflow. Review collected by and hosted on G2.com.

It has a limitation on scanning methods only supports on deployed agents on developers end. Sometimes facing ui issue and latency. Review collected by and hosted on G2.com.

In my experience, this product is best for application code security and finding the libraries and package level vulnerabilities in stage of development. Review collected by and hosted on G2.com.

It have some limitations to scan a code only from directly by developers desktop. One the code will be pushed to repository it will not taken any scans of developed codes. Review collected by and hosted on G2.com.

If you have any fear or worry about your code or infrastructure as code security then this is the most advanced and amazing tool or platform for your code security and protection.

As per my encounter with this tool Check Point Cloud Guard Code Security following are the features I would highly recommend or would say the best.-

Advanced Code Scanning capabilities

Code source detection of its getting leak.

Easy to install and deploy and configure. Review collected by and hosted on G2.com.

Easy to setup.

Easy integration with CI. Review collected by and hosted on G2.com.