Aikido Security
Aikido SecurityReviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
91 reviews
from
External reviews are not included in the AWS star rating for the product.
Impressive AI Analysis, But Room for Improvement
What do you like best about the product?
I really like the AI feature, and how they do the actual analysis, and how they use AI to describe it in the specific use case.
What do you dislike about the product?
I would really like that they implemented more languages within the visual studio code extension of Aikido. And i would secondly also really like that they made it easier to do local CLI, kinda a big part of what im missing from Snyk, else Aikido has been much better.
What problems is the product solving and how is that benefiting you?
It is solving that i am normally a bit paranoid and not so confident in the security of my code because of reputation, this solves this insecurity by a lot. Thanks Aikido!
Effortless, Powerful Security That Fits Seamlessly Into Developer Workflows
What do you like best about the product?
I’ve been using Aikido Security and really enjoy how simple yet powerful it is. It seamlessly scans code, dependencies, and cloud environments, giving clear, actionable insights without the noise. The prioritization of real risks makes fixing issues efficient and stress-free. I highly recommend Aikido Security to clients who want strong, developer-friendly protection built into their workflow.
What do you dislike about the product?
So far, I haven't encountered any issues, and it suits my current needs well.
What problems is the product solving and how is that benefiting you?
This is an advanced and up-to-date vulnerability scanner that integrates easily into a codebase repository. Its modern features and straightforward integration make it a strong choice for developers looking to enhance their security processes.
Great Interface and CI Integration, But Limited Scan Task Options
What do you like best about the product?
Friendly interface, AI agent to help in the remediation and good integration with CI tools.
What do you dislike about the product?
I am not able to create a taks in my CI process to run the scan, only in pull requests.
What problems is the product solving and how is that benefiting you?
See the vulnerabilities in my code and in my containers and help me to solve it.
Effortless Setup and Clear Issue Tracking with Aikido
What do you like best about the product?
I liked Aikido's ease of use and ease of implementation. It made it very easy to get started with discovering gaps in your implementations. The way that Aikido does a good job outlining and presenting issues.
What do you dislike about the product?
The pricing structure is aggressive for smaller developers, but they have a great free offering. Sometimes the "daily" tests would not complete correctly for us.
What problems is the product solving and how is that benefiting you?
Aikido reviews our applications and lists any vulnerabilities that it may have.
safe-chain to the rescue
What do you like best about the product?
we now use safe-chain for our CI for better security
What do you dislike about the product?
Like other security solutions you have to make sure you need it, since there is a price tag to it
What problems is the product solving and how is that benefiting you?
secure npm ci
Unified Vulnerability Management Made Simple and Effective
What do you like best about the product?
Akido unifies vulnerability management across cloud, code, os dependencies and containers into one simple platform
What do you dislike about the product?
I have not found anything to dislike so far , it's been smooth and effective in my experience
What problems is the product solving and how is that benefiting you?
Aikido security helped us assessment our container environments, quickly identified all vulnerabilities and effectively resolved then to stregthen our over all security posture
Effortless Setup and Intuitive UX with Advanced Options for Power Users
What do you like best about the product?
The ease of setup and the overall UX have an astoundingly low barrier to entry, but as an experienced SRE/infra engineer, I can still find my way to more advanced options.
I have used many similar systems, such as Snik, Detectify, and Datadog's Cloud Security platform, with varying degrees of success, and Aikido hits a very sweet spot between low learning curve and configurability.
I have used many similar systems, such as Snik, Detectify, and Datadog's Cloud Security platform, with varying degrees of success, and Aikido hits a very sweet spot between low learning curve and configurability.
What do you dislike about the product?
Some options I would like to use are currently restricted by cost due to team size, but I'm otherwise happy with the pricing vs features.
What problems is the product solving and how is that benefiting you?
Aikido provides a very capability continuous automated penetration testing system which runs continuously against our environments, alongside a regular solid manual penetration test with our security partner.
We are expanding to make use of other featues, such as SAST, in our CI pipeline that has more than met the needs of other competitors we were using, namely Snik and Datadog.
We are expanding to make use of other featues, such as SAST, in our CI pipeline that has more than met the needs of other competitors we were using, namely Snik and Datadog.
Developer and web agency owner
What do you like best about the product?
I think it is a great tool, especially for small firms, as it combines the ability to not only perform Pentests, but also to audit open source js, and PHP dependencies of possible known security issues, and when to upgrade, as well as performing SAST scans, with suggested fixes. Many tools only do either Pentesting or perform an SAST scan, as well as an open source dependency scan
What do you dislike about the product?
My tests of the Zen Firewall were a bit buggy. It would seem that there is quite a delay in the changes made to code, and to what appeared in the Aikido interface.
What problems is the product solving and how is that benefiting you?
With Aikio we can automate the process of auditing our code and infrastructure to offer our clients the peace of mind, that what we deliver to them is secure. By integrating such a tool, we are able to let Aikido do the heavy lifting, so that we can focus on coding, without the hassle of performing all the tests, and audits every time we commit code.
We are also interested in utilising the Aikido Zen, to add an extra layer of security on top of what we already use, and eliminate the need to set up separate cloudflare accounts for each project.
We are also interested in utilising the Aikido Zen, to add an extra layer of security on top of what we already use, and eliminate the need to set up separate cloudflare accounts for each project.
A developer-first security tool that delivers fast, actionable results
What do you like best about the product?
At HotDoc, we integrated Aikido to enhance our secure development practices, and it has quickly demonstrated its worth. The platform is very developer-friendly, offering a seamless onboarding experience, rapid scans, and results that are both clear and actionable, all without overwhelming our teams with unnecessary noise. In contrast to many traditional SAST tools, Aikido feels lightweight but remains effective, providing the right guardrails to support our developers without causing delays. It allows us to maintain security at a pace that aligns with modern software development. I strongly recommend Aikido to security teams who prioritise a secure-by-design philosophy.
What do you dislike about the product?
These aren't major drawbacks, as Aikido is a newer tool and still evolving, but there are areas where the platform is less mature. Its cloud and infrastructure security coverage is not yet as comprehensive as its application code scanning. While integrations with core platforms like Github, Slack, and Jira are strong, support for broader ecosystems is still limited - though this is expected to expand over time.
What problems is the product solving and how is that benefiting you?
Aikido's auto-ignore capability prioritises accuracy over noise by surfacing only vulnerabilities that truly matter. This significantly reduces alert fatigue common with older SAST tools and keeps our developers focused on fixes with real security impact.
The platform's fast, lightweight scans run in minutes and are non-disruptive to our development workflows. Unlike bulky enterprise SAST solutions, Aikido requires no heavy configuration or infrastructure overhead, making it easy to adopt.
With its developer-centric design, Aikido integrates natively with Github and Slack to deliver clear, actionable findings directly into existing workflows. Features like pull-request scans and inline comments minimise context switching for our developers.
The platform's fast, lightweight scans run in minutes and are non-disruptive to our development workflows. Unlike bulky enterprise SAST solutions, Aikido requires no heavy configuration or infrastructure overhead, making it easy to adopt.
With its developer-centric design, Aikido integrates natively with Github and Slack to deliver clear, actionable findings directly into existing workflows. Features like pull-request scans and inline comments minimise context switching for our developers.
Game changing tool for shift left security mindset
What do you like best about the product?
First off, I rarely write reviews, but Aikido absolutely deserves praise.
This tool has been really reliable for MoveInSync's code security pipeline. It's clear that a lot of thought, effort, and love has gone into creating a product that genuinely finds reliable security findings with clear instruction on fixing the issues making shift left mindset seemless.
What I love most about Aikido is its simplicity and false positive filter capability, where you don’t have to jump through hoops of irrelevant findings.
It seamlessly integrates into our DevSecOps pipeline.
The UI is intuitive, the performance is lightning-fast, and the slack support team? Absolutely top-notch.
They’re quick to respond, actively listen to feedback, and are constantly releasing thoughtful improvements.
Having All-in-one: SAST, SCA, Secret Scanning, DAST (still in early stage), CSPM, and api asset monitoring tool in a single tool is really helpful and now I can’t imagine working without it.
This is exactly the kind of innovative tool that reminds me why I love tech in the first place.
Highly recommend.
This tool has been really reliable for MoveInSync's code security pipeline. It's clear that a lot of thought, effort, and love has gone into creating a product that genuinely finds reliable security findings with clear instruction on fixing the issues making shift left mindset seemless.
What I love most about Aikido is its simplicity and false positive filter capability, where you don’t have to jump through hoops of irrelevant findings.
It seamlessly integrates into our DevSecOps pipeline.
The UI is intuitive, the performance is lightning-fast, and the slack support team? Absolutely top-notch.
They’re quick to respond, actively listen to feedback, and are constantly releasing thoughtful improvements.
Having All-in-one: SAST, SCA, Secret Scanning, DAST (still in early stage), CSPM, and api asset monitoring tool in a single tool is really helpful and now I can’t imagine working without it.
This is exactly the kind of innovative tool that reminds me why I love tech in the first place.
Highly recommend.
What do you dislike about the product?
Aikido does provide a local CLI scanner, which we prefer for our DevSecOps workflow, but the experience has been awkward for branch-based development.
We have to run scans locally and manually set the branch each time. In our usage, the CLI treated each branch scan as a separate “repo,” which quickly eats into the repo quota on our plan (e.g., 200 repos), whereas the cloud-connected scanner lets us switch branches on the same repository and re-run without consuming additional repo slots .
For teams with lots of short‑lived branches, that repo-counting behavior makes the local option a little hard to adopt.
Also the PR annotations are cloud-only. Inline PR comments/checks work via the cloud-integrated service (e.g., GitHub/GitLab/Bitbucket).
Local CLI scans do not post PR annotations.
We have to run scans locally and manually set the branch each time. In our usage, the CLI treated each branch scan as a separate “repo,” which quickly eats into the repo quota on our plan (e.g., 200 repos), whereas the cloud-connected scanner lets us switch branches on the same repository and re-run without consuming additional repo slots .
For teams with lots of short‑lived branches, that repo-counting behavior makes the local option a little hard to adopt.
Also the PR annotations are cloud-only. Inline PR comments/checks work via the cloud-integrated service (e.g., GitHub/GitLab/Bitbucket).
Local CLI scans do not post PR annotations.
What problems is the product solving and how is that benefiting you?
Aikido has been really reliable for MoveInSync's code security pipeline.
Having All-in-one: SAST, SCA, Secret Scanning, DAST (still in early stage), CSPM, and api asset monitoring tool in a single tool is really helpful and now I can’t imagine working without it.
Having All-in-one: SAST, SCA, Secret Scanning, DAST (still in early stage), CSPM, and api asset monitoring tool in a single tool is really helpful and now I can’t imagine working without it.
showing 1 - 10