We performed a comparison between Coverity and Synopsys API Security Testing based on real PeerSpot user reviews.
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Static Application Security Testing (SAST)."The product has deeper scanning capabilities."
"The security analysis features are the most valuable features of this solution."
"The solution has helped to increase staff productivity and improved our work significantly by approximately 20 percent."
"One of the most valuable features is Contributing Events. That particular feature helps the developer understand the root cause of a defect. So you can locate the starting point of the defect and figure out exactly how it is being exploited."
"The interface of Coverity is quite good, and it is also easy to use."
"I like Coverity's capability to scan codes once we push it. We don't need more time to review our colleagues' codes. Its UI is pretty straightforward."
"The product has been beneficial in logging functionality, allowing me to categorize vulnerabilities based on severity. This aids in providing updated reports on subsequent scans."
"The features I find most valuable is that our entire company can publish the analysis results into our central space."
"The most valuable features of Synopsys API Security Testing are the metrics, results, and threat vectors that it shares."
"We'd like it to be faster."
"The product could be enhanced by providing video troubleshooting guides, making issue resolution more accessible. Troubleshooting without visual guides can be time-consuming."
"Coverity is far from perfection, and I'm not 100 percent sure it's helping me find what I need to find in my role. We need exactly what we are looking for, i.e. security errors and vulnerabilities. It doesn't seem to be reporting while we are changing our code."
"Right now, the Coverity executable is around 1.2GB to download. If they can reduce it to approximately 600 or 700MB, that would be great. If they decrease the executable, it will be much easier to work in an environment like Docker."
"It should be easier to specify your own validation routines and sanitation routines."
"Coverity is not stable."
"The reporting tool integration process is sometimes slow."
"Reporting engine needs to be more robust."
"The solution required us to use our team and we spoke to Synopsys API Security Testing's support to do the implementation. We use two people from our team for the implementation. and one person for maintenance."
Earn 20 points
Coverity is ranked 4th in Static Application Security Testing (SAST) with 34 reviews while Synopsys API Security Testing is ranked 35th in Static Application Security Testing (SAST). Coverity is rated 7.8, while Synopsys API Security Testing is rated 7.0. The top reviewer of Coverity writes "Best SAST tool to check software quality issues". On the other hand, the top reviewer of Synopsys API Security Testing writes "Useful threat vectors, beneficial results, but implementation needed support". Coverity is most compared with SonarQube, Klocwork, Fortify on Demand, Checkmarx One and Veracode, whereas Synopsys API Security Testing is most compared with Seeker, Fortify WebInspect and OWASP Zap.
See our list of best Static Application Security Testing (SAST) vendors.
We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
