Check Point CloudGuard Code Security Pros and Cons

CloudGuard Code Security integrates seamlessly with our CI/CD pipelines (Jenkins and GitHub Actions). It provides real-time scanning of infrastructure as code (IaC) like Terraform and CloudFormation. I appreciate its detailed vulnerability reports, policy-as-code capabilities, and easy-to-use dashboards. Review collected by and hosted on G2.com.

The initial setup and configuration were a bit complex and required documentation referencing. Also, it can sometimes generate false positives in custom scripts. Improved documentation for multi-cloud deployment scenarios would be helpful. Review collected by and hosted on G2.com.

What I like most is how easily CloudGuard Code Security integrates into our CI/CD pipeline. It scans Infrastructure-as-Code (IaC) configurations in real time, offering detailed and actionable insights. Its support for multiple frameworks like Terraform and CloudFormation is a big plus. The tool is reliable and gives us confidence that we’re shipping secure code to the cloud Review collected by and hosted on G2.com.

The one area I think needs improvement is documentation. Some advanced configuration examples are not clearly explained, and we had to spend extra time experimenting. Also, the initial onboarding could be a bit more guided for first-time users Review collected by and hosted on G2.com.

It fits seamlessly into our CI/CD pipelines without slowing down builds, and we don’t have to worry about data leaving our environment since everything runs locally. The in-depth detection of misconfigurations and hardcoded credentials is really commendable, and the ability to customize policies gives us flexibility to align with our internal security standards. Review collected by and hosted on G2.com.

the initial setup and policy customization take some time, the documentation is very helpful but for advanced usecase it becomes cubersome to implement Review collected by and hosted on G2.com.

The best part was the comprehensive solution they provide in CloudGuard. I was working as contractor for a firm & they were using CloudGuard to maintain the cloud security. Since we were using multiple cloud like GCP, Azure etc. it really become crucial to consider cloud security on priority. Review collected by and hosted on G2.com.

There is no such downsides but it would have been really helpful if they could add a product tour. Review collected by and hosted on G2.com.

Easy to integrate and deploy.

I can use cloud gaurd check point security code in my ci/cd pipeline building and it's helping to reduce and low the risk of code risk and vulnerabilities.

As a DevOps software engineer I have to do code review and code scanning.

Also secures scaning of source code. Review collected by and hosted on G2.com.

As mentioned above easy to use easy to deploy.

No drawbacks I can point out or say. Review collected by and hosted on G2.com.

Easy to integrate and deploy.

It was smooth and had no issues while integrating it with CI/CD.

Automation features for our day to day workflow.

Helping in our SDLC process. Review collected by and hosted on G2.com.

Nothing as per the uses as of now.

N numbers of APIs. Review collected by and hosted on G2.com.

The agent based scanning will help us to find the vulnerabilities while the code is in development phase. It will indicate that the following code contains any package level vulnerabilities or it storing any secrets on code level. Review collected by and hosted on G2.com.

It will not able to detect the vulnerabilities once the code was build to image. Review collected by and hosted on G2.com.

Probably the best feature to me personally is that it supports the cicd pipeline and the plugin API which is related to front end nginx etc.

Also The agent based scanning method which helps to fond the code level vulnerabilities and package level findings prior to building a image

The scanning engine supports custom rulesets and and continues scanning will be done for any new findings all this by still enabling cross platform users to use this to the fullest

customer support is great

the UI is clean and easy to understand and implementation can be done quickly Review collected by and hosted on G2.com.

It has high latency

It scans only after prebuilding of the images Review collected by and hosted on G2.com.

it has a advanced feature of threat intelligance engine and it will detect the malicious IP address and it has a customized intelligence ruleset for our environment. Review collected by and hosted on G2.com.

In v2 engine some of the APIs are not working properly. the cost of licence and maintanice its a drawback for smaller bussiness environment, and it has a limitation network security only support

We can't set the exclusion for reported findings. Review collected by and hosted on G2.com.

This tool finding us great helpful in our SDLC process. Providing amazing features like scanning monitering and protecting our code and our cloud network infrastructure. Review collected by and hosted on G2.com.

Nothing that I can highlight here as negative experience. Review collected by and hosted on G2.com.