Coverity

3.5 (6)
Write a Review!
Build secure, high-quality software faster.

Overall rating

3.5 /5
(6)
Value for Money
3.8/5
Features
4/5
Ease of Use
3.3/5
Customer Support
3.2/5

50%
recommended this app
Sort by

6 Reviews

Verified Reviewer
Overall rating
  • Industry: Information Technology & Services
  • Company size: 1,001–5,000 Employees
  • Used Daily for 6-12 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 9.0 /10

Optimize your code with great tool

Reviewed on 3/9/2022

Overall experience is very awesome. It is helping our team to manage the source code along with the...

Overall experience is very awesome. It is helping our team to manage the source code along with the desired quality of code.

Pros

1. It does more than just verifying and inspecting the source code.
2. Easily detects an issue in source and provides a way to make your code optimized in terms of logic and line of code.
3. It has very promising feature which provides a faster way to debug and analyze the code.
4. The tool is pretty good and it is easy to setup with proper guidelines.

Cons

1. Some plugins are getting crashed suddenly which needs to be taken care.
2. Need some more marketing efforts as most of the developers are not known about this tool.
3. Some enhancements in UI will improve user experience.
4. It becomes very slow while dealing with large projects.

Sidd
Overall rating
  • Industry: Information Technology & Services
  • Company size: 1,001–5,000 Employees
  • Used Daily for 2+ years
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 7.0 /10

Synopsys Coverity Feedback

Reviewed on 22/2/2022

We were able to rememdiate quite a handful of security issues in the application.

We were able to rememdiate quite a handful of security issues in the application.

Pros

We used Coverity as a SAST for our .NET, JAVA and JS. Coverity does have a higher detection rate hence we relied heavily on this tool for identifying the vulnerabilities.

We had also integrated this Coverity to our CI/CD Pipeline, this helped us easily manage the deployment as well. It provides a mechanism to audit the findings and mark false positives in an effecient way.

Cons

Time it takes to scan huge code lines is significantly slower when compared to other tools. Coverity does have a very high number of false positives which at a points gets on the nerves of developers as well as security engineers. There were few vulnerabilities which were not identified by the tool.

Alternatives Considered

CxSAST
Londou Jacques
Londou Jacques
Overall rating
  • Industry: Computer Software
  • Company size: 2–10 Employees
  • Used Weekly for 6-12 months
  • Review Source

Overall rating

  • Ease of Use
  • Customer Support
  • Likelihood to recommend 7.0 /10

Good tool for static application security testing

Reviewed on 4/5/2023

Coverity is a powerful and widely respected SAST tool that can help teams to identify and fix...

Coverity is a powerful and widely respected SAST tool that can help teams to identify and fix security vulnerabilities in their code more efficiently and effectively.

Pros

One of the most notable strengths of Coverity is its accuracy in identifying security vulnerabilities in code. It uses advanced static analysis techniques to scan code for a wide range of vulnerabilities, including buffer overflows, memory leaks, and null pointer dereferences.

Cons

A potential downside of Coverity is that it can generate a large number of false positives, particularly when scanning complex or legacy codebases. This can make it difficult for development teams to prioritize and address the most critical security vulnerabilities, and may lead to frustration or confusion among team members.

Alternatives Considered

SonarQube and CxSAST
Umesh
Overall rating
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 9.0 /10

Very good tool for detecting issues through static code analysis especially embedded developmen...

Reviewed on 18/8/2017

Static code analysis for identifying issues

Static code analysis for identifying issues

Pros

Very good for embedded development and very effective in detecting hard-to-find bugs. Very low false positive rate. It supports wide variety of platforms and with number of different compilers.

Cons

Analysis Result dashboard can be more user friendly. Easy integration with bug tracking tool can add value.

Verified Reviewer
Overall rating
  • Industry: Oil & Energy
  • Company size: 10,000+ Employees
  • Used Weekly for 1-5 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Likelihood to recommend 7.0 /10

Speed up code review by capturing bugs at an early stage.

Reviewed on 31/1/2019

Pros

Helps automating code review and improve code quality with no effort.
A very responsive user interface, easy to setup and customize, with lots of features and options making it very flexible and adaptable to your needs.
I appreciated the fine detection of bugs which have been undetected by competitors' tool.

Cons

Documentation and customer support could be improved.

Response from Synopsys

We¿re so glad you were able to set up Coverity quickly and get meaningful reports. We have been working hard on making changes to our customer support team to provide better service, including adding a new senior support team to provide more technical support when needed. We¿d love to have a conversation to see if these changes are helping and to gather your ideas on how we can continue to improve your customer experience. You can contact Andrew John, our Senior Director of Global Customer Support directly at [email protected]. We hope to hear from you!

Shitalkumar
Overall rating
  • Used Monthly for 1-5 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support

Good tool for static analysis

Reviewed on 23/8/2017

Pros

Ease of use, Effective in embedded development, supports cross platform development and compilers. Useful for finding the corner cases and minute bugs

Cons

interface and screens can be made simpler and more user interactive in few cases. possibility of customized functions needed