Try our new research platform with insights from 80,000+ expert users
Angestellter at a computer software company with 11-50 employees
Real User
A scalable and easy-to-use solution that can be easily deployed
Pros and Cons
  • "The product is easy to use."
  • "Sometimes it's a bit hard to figure out how to use the product’s UI."

What is our primary use case?

I use the solution for static analysis.

What is most valuable?

The product has good API documentation. I’m quite happy with it. The product is easy to use.

What needs improvement?

Sometimes it's a bit hard to figure out how to use the product’s UI.

For how long have I used the solution?

I have been using the solution for some years.

Buyer's Guide
Coverity
November 2024
Learn what your peers think about Coverity. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
814,649 professionals have used our research since 2012.

What do I think about the stability of the solution?

I have not faced any issues with the product’s stability.

What do I think about the scalability of the solution?

The solution is scalable. Four people in my organization use the solution.

How was the initial setup?

The initial setup is easy.

What other advice do I have?

I am using the latest version of the product. I have also used Clang Static Analyzer. People planning to use the solution should try the open-source version first to understand how it works. We must have the paid version of the product to get all the resources and documentation. Overall, I rate the product an eight out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Jay-Prakash - PeerSpot reviewer
Consaltant at a tech consulting company with 501-1,000 employees
Real User
An easy-to-set-up solution used to find vulnerabilities in C++ codes, but its user interface could be improved
Pros and Cons
  • "Coverity is easy to set up and has a less lengthy process to find vulnerabilities."
  • "The solution's user interface and quality gate could be improved."

What is our primary use case?

We are working on medical devices, and the code base is written in C++. We use Coverity to find the vulnerability in those C++ codes.

What is most valuable?

Coverity is easy to set up and has a less lengthy process to find vulnerabilities.

What needs improvement?

The solution's user interface and quality gate could be improved.

For how long have I used the solution?

I have been using Coverity for four months.

What do I think about the stability of the solution?

Coverity has good stability.

I rate Coverity more than eight out of ten for stability.

What do I think about the scalability of the solution?

Around 20 to 25 developers use Coverity in our organization.

I rate Coverity a seven to eight out of ten for scalability.

Which solution did I use previously and why did I switch?

We use SonarQube for Java-based projects and Coverity for C and C++-based projects.

How was the initial setup?

The solution’s initial setup is simple.

What other advice do I have?

Overall, I rate Coverity a seven out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
PeerSpot user
Buyer's Guide
Coverity
November 2024
Learn what your peers think about Coverity. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
814,649 professionals have used our research since 2012.
Sr. QA Engineer at a computer software company with 1-10 employees
Real User
Good tech support but it doesn't report errors like it should
Pros and Cons
  • "I encountered a bug with Coverity, and I opened a ticket. Support provided me with a workaround. So it's working at the moment, or at least it seems to be."
  • "Coverity is far from perfection, and I'm not 100 percent sure it's helping me find what I need to find in my role. We need exactly what we are looking for, i.e. security errors and vulnerabilities. It doesn't seem to be reporting while we are changing our code."

What is our primary use case?

We use Coverity for static analysis of our code.

What needs improvement?

Coverity is far from perfection, and I'm not 100 percent sure it's helping me find what I need to find in my role. We need exactly what we are looking for, i.e. security errors and vulnerabilities. It doesn't seem to be reporting while we are changing our code. So either we are perfect, or the tool is missing something. 

For how long have I used the solution?

I've been using Coverity for a couple of years.

What do I think about the scalability of the solution?

I haven't had much experience trying to scale up Coverity. Only three people at our company work with it.

How are customer service and support?

I encountered a bug with Coverity, and I opened a ticket. Support provided me with a workaround. So it's working at the moment, or at least it seems to be. They are on par with other tech support in terms of knowledge. However, their style of communication could use some improvement.

How was the initial setup?

Setting up Coverity is highly complex. The upgrade procedure is also pretty tough. We've had trouble with it on at least one occasion. When I went ahead with it, it destroyed the installation. I couldn't go back. So it's challenging to understand from the documentation. It seems like they tried to cover all possible topics in their manuals, so they ended up scratching the surface of everything in the world except for the particular practical items that I needed.

What's my experience with pricing, setup cost, and licensing?

Coverity is very expensive.

What other advice do I have?

I rate Coverity five out of 10, but it's tough for me to judge because we decided to purchase it based on one requirement that no other static analysis tool could satisfy. For that reason, we haven't tried anything else. So, let's make an analogy. Let's say I used Sony TVs my entire life, and someone comes up and says, "Hey, there is a new brand of TVs. What do you think of them? Do you think they are good?" How would I know? By comparison, SonarQube seems to be more feature-rich for a standard programming language, and it works with more continuous integration tools.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Real User
It gives advice and training on how to resolve the most common quality issues, but the REST implementation is sub-par

What is our primary use case?

  • Raising the level of code quality, security, and robustness in the codebase
  • Tracking and addressing code quality issues.

How has it helped my organization?

Coverity provides developers with a good, best practice, coding advice, and tracks risks of poor coding quality. Coverity reports have urged developers to improve the quality of their code.

What is most valuable?

  • I like that it gives advice and training on how to resolve the most common quality issues. 
  • Links to more details on each issue and the background and risks.

What needs improvement?

  • Ability to follow source file s-links into the target location for issuing assignments through GIT.  Our current build environment uses symbolic links into the git repo and Coverity does not follow the link into the actual location of the source file to determine the git author.
  • Single API for all interactions. I am not a fan of using both SOAP and REST APIs and Coverity offers a mix of functionality depending on the interface used. I would greatly prefer a full REST API with improved documentation for all actions including issuing assignments, streaming, and project creation. 

For how long have I used the solution?

One to three years.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Birbal Sain - PeerSpot reviewer
Software Developer at Altair
Real User
Scalable, good for cluster structures, and has helpful technical support
Pros and Cons
  • "Coverity is scalable."
  • "Coverity is not stable."

What is our primary use case?

We are using GK and the latest version for port deployment.

For how long have I used the solution?

I have been using Coverity for three and a half years.

What do I think about the stability of the solution?

Coverity is not stable but it is sufficient for our organization's requirements.

What do I think about the scalability of the solution?

Coverity is scalable.

How are customer service and support?

We contacted technical support to help us clean up an issue we had.

What other advice do I have?

If they have a cluster structure, then definitely they should use Coverity. I would rate Coverity a nine out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Director at a manufacturing company with 10,001+ employees
Real User
Stable, scalable, and provides reports about a lot of potential defects
Pros and Cons
  • "It provides reports about a lot of potential defects."
  • "Its price can be improved. Price is always an issue with Synopsys."

What is our primary use case?

We use it in our company during product development.

What is most valuable?

It provides reports about a lot of potential defects.

What needs improvement?

Its price can be improved. Price is always an issue with Synopsys.

For how long have I used the solution?

I have been using Coverity for about three or four years.

What do I think about the stability of the solution?

It has good stability.

What do I think about the scalability of the solution?

Its scalability is good. 

How are customer service and technical support?

They are professional and very responsible. They have a local FAE.

How was the initial setup?

It is not straightforward, but it is also not too complex. The learning curve needed for installing Coverity is okay.

What's my experience with pricing, setup cost, and licensing?

It is expensive.

What other advice do I have?

I would recommend this solution if you can afford it. If you have enough budget, it is one of the best solutions right now. There may be other cheaper solutions, but you get what you pay for.

We have been using Coverity for several years. We would not have continued using it if it was not a good solution. We always have some minor questions or improvements for them, and they always give us a relatively fast response.

I would rate Coverity a nine out of ten. Only its price should be improved.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Senior Technical Specialist at a tech services company with 201-500 employees
Real User
Integrates well with Jenkins and GitLab, and has helped us find errors before going into production
Pros and Cons
  • "The most valuable feature is the integration with Jenkins."
  • "Ideally, it would have a user-based license that does not have a restriction in the number of lines of code."

What is our primary use case?

We have a development team and we are using this product for static code analysis.

How has it helped my organization?

This product has definitely helped our organization. Based on what I have heard from the development team, they have found a lot of issues before code goes into production.

What is most valuable?

The most valuable feature is the integration with Jenkins. Jenkins can be used to automatically run it to perform the code analysis.

Integration with GitLab is helpful.

What needs improvement?

Coverity is too costly, which is why we are trying other tools. Ideally, it would have a user-based license that does not have a restriction in the number of lines of code.

For how long have I used the solution?

We have been using Coverity for between five and six years.

What do I think about the scalability of the solution?

Coverity is used across our entire organization.

How was the initial setup?

The initial setup in the Windows environment was straightforward. However, for Linux, it has some complexity.

What about the implementation team?

We have a separate team in the company that takes care of deployment. One person is enough for the task

What's my experience with pricing, setup cost, and licensing?

The licensing fees are based on the number of lines of code. We may not need more than five user licenses but with a restriction on the number of lines of code, for a small company the cost will shoot up.

Which other solutions did I evaluate?

Our license for Coverity has expired and we are in the process of exploring new static code analysis tools. Ideally, we would like to have one that is low-cost.

One of the products that I have downloaded a trial version for is SonarQube. At this point, I have only installed the Windows version but I plan on testing the Linux version, as well.

What other advice do I have?

In summary, this is a helpful product and the feedback that I have heard from the development team is good.

I would rate this solution an eight out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
PeerSpot user
Chief Specialist at a government with 501-1,000 employees
Real User
The product improves the quality of my work, but the usability could be improved
Pros and Cons
  • "The solution has helped to increase staff productivity and improved our work significantly by approximately 20 percent."
  • "They could improve the usability. For example, how you set things up, even though it's straightforward, it could be still be easier."

What is our primary use case?

I am using the latest version for my business. I personally do product evaluations, and this product has improved the efficiency of my work.

How has it helped my organization?

The product improves the way that we do product evaluations.

What is most valuable?

It improves the quality of my work. 

What needs improvement?

They could improve the usability. For example, how you set things up, even though it's straightforward, it could be still be easier.

What do I think about the stability of the solution?

The stability works quite well.

What do I think about the scalability of the solution?

The scalability is good enough.

How are customer service and technical support?

We haven't had any problems with the product so far.

Which solution did I use previously and why did I switch?

We did not have another solution before. We decided to purchase Coverity because the way we were working previously wasn't efficient. So, we were trying to improve our efficiency.

How was the initial setup?

The initial setup was straightforward.

What was our ROI?

We have seen ROI.

The solution has helped to increase staff productivity and improved our work significantly by approximately 20 percent.

Which other solutions did I evaluate?

This solution seemed to fit our purposes.

What other advice do I have?

Try it out for yourself, and decide whether it's useful for you.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Download our free Coverity Report and get advice and tips from experienced pros sharing their opinions.
Updated: November 2024
Buyer's Guide
Download our free Coverity Report and get advice and tips from experienced pros sharing their opinions.