Why replacing Postman for Bruno saved my company millions (really)

10 points

2 years ago

A bit of a rant... I used Postman for nearly a decade. I also had my company (at the time) first purchase it about 6 years ago.

Over those 6 years I watched it: 1. Go from $72 per year to $1,188 a year 2. Become a bloated mess that won't stop trying to be this first class citizen it will never become 3. Continue to expose more and more security risk (making us login, store things in the cloud, etc) 4. Finally try to strong arm everyone at a legitimate company into paying by basically creating a loophole that any of your data can be pushed public or is saved under your personal account unless you buy their Enterprise bs account for $1,188 per year.

My company was trying to work with them but it was legitimately going to be millions of dollars a year.

Ultimately, their own sales team put the final nail in the coffin. As part of one of their presentations, they were sharing a TON of data about us, how we use the product, the type of collections, etc. One of our security folks basically tricked them into exposing that EVERYONE at Postman has access to our collection-level data (tokens, keys, etc) through their Looker instance. With that level of risk that apparently is unsolvable, enough was enough.

A bunch of people were already using Bruno (https://github.com/usebruno/bruno) so we just moved to that. It does everything we need and basically solves one of engineering's biggest requests which was to version our collections in GitHub. Now we don't need to maintain all of these workspaces and collections separately.

End of rant but this is how we not only avoided a $1M+ bill since Bruno is 1/12 the cost, but also probably saved who knows how much by not having a crazy security breach.

3 comments