CAST Application Intelligence Platform vs Coverity Comparison 2024

CAST Application Intelligence Platform

Coverity

CAST Application Intelligence Platform

Read 4 CAST Application Intelligence Platform reviews

1,014 views|687 comparisons

Coverity

Read 33 Coverity reviews

17,611 views|11,453 comparisons

Featured Review

Vishal-Goyal

Chief Architect at Peristent Systems

Has a security dashboard that's helpful because it gives compliance checks based on some of the leading frameworks in the industry

Estefania Ramirez

Application Security Auditor at Softtek

Great app analysis, support, and pricing

The product allows us to find vulnerabilities while testing our apps.

Quotes From Members

We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:

Pros

"It supports most programming languages.""Used for controlling the technical debt and code quality.""Our clients use CAST Highlight for cloud migration. This allows them to remove or remediate the blockers which are highlighted. This part of the solution shows improvement in quality and captures feedback for our clients.""CAST's risk and security flow detection capabilities are highly effective, particularly in identifying security vulnerabilities. It is one of the most important and valuable features of the platform.""The most valuable feature of the CAST Application Intelligence Platform is its security dashboard which is a dedicated dashboard that's pretty helpful because it gives compliance checks based on some of the leading frameworks in the industry, such as ISO 5055, OWASP, CWE Top 25, and NIST security guidelines. I find the security dashboard of the solution and the information it provides pretty useful. The security dashboard of the CAST Application Intelligence Platform is a feature that stands out."

More CAST Application Intelligence Platform Pros →

"The most valuable feature of Coverity is that it shows examples of what is actually wrong with the code.""The app analysis is the most valuable feature as I know other solutions don't have that.""One of the most valuable features is Contributing Events. That particular feature helps the developer understand the root cause of a defect. So you can locate the starting point of the defect and figure out exactly how it is being exploited.""Coverity is quite stable and we haven’t had any issues or any downtime.""We were very comfortable with the initial setup.""The interface of Coverity is quite good, and it is also easy to use.""The product has deeper scanning capabilities.""The product has been beneficial in logging functionality, allowing me to categorize vulnerabilities based on severity. This aids in providing updated reports on subsequent scans."

More Coverity Pros →

Cons

"Implementation could be made more simpler as it is complex.""The overall coverage of rules could be improved in the CAST Application Intelligence Platform because it does not cater to or cover all. For example, 2022 CWE coverage is still not available in the CAST Application Intelligence Platform. The solution also covers some NIST rules, but it does not cater to all rules. An additional feature I'd like to see in the next update of the CAST Application Intelligence Platform is for it to provide source code developer and contributor details, especially information on which areas of code were touched. This would be a good insight as the CAST Application Intelligence Platform looks into the source code.""The integration of this solution could be improved.""It has very few plugins to access different code repositories, so source code has to be fed.""Areas for improvement in CAST AIP include enhancing support for implementation in complex environments and improving technical support to address organizational challenges alongside engineering issues."

More CAST Application Intelligence Platform Cons →

"Coverity is far from perfection, and I'm not 100 percent sure it's helping me find what I need to find in my role. We need exactly what we are looking for, i.e. security errors and vulnerabilities. It doesn't seem to be reporting while we are changing our code.""Sometimes it's a bit hard to figure out how to use the product’s UI.""Right now, the Coverity executable is around 1.2GB to download. If they can reduce it to approximately 600 or 700MB, that would be great. If they decrease the executable, it will be much easier to work in an environment like Docker.""Ideally, it would have a user-based license that does not have a restriction in the number of lines of code.""The solution is a bit complex to use in comparison to other products that have many plugins.""The quality of the code needs improvement.""The solution could use more rules.""Its price can be improved. Price is always an issue with Synopsys."

More Coverity Cons →

Pricing and Cost Advice

"I do know how the CAST Application Intelligence Platform is licensed, but I'm not able to give the cost because the price is not listed. My company works with individual vendors, so pricing is on a case-to-case basis, but the vendors give specialized pricing because of the enterprise deployment, though my team is aware of product pricing based on lines of code, based on the number of applications, etc., I'm unable to give the exact licensing costs of the CAST Application Intelligence Platform. My company doesn't have to pay extra for some features or services because all are included as part of the enterprise license. On a scale of one to five, with five being very cheap and one being very expensive, I would rate the CAST Application Intelligence Platform as three out of five."

More CAST Application Intelligence Platform Pricing and Cost Advice →

"Coverity is quite expensive."

"The licensing fees are based on the number of lines of code."

"The price is competitive with other solutions."

"It is expensive."

"Coverity is very expensive."

"This is a pretty expensive solution. The overall value of the solution could be improved if the price was reduced. Licensing is done on an annual basis."

"The pricing is very reasonable compared to other platforms. It is based on a three year license."

"The pricing is on the expensive side, and we are paying for a couple of items."

More Coverity Pricing and Cost Advice →

See Which Vendors Are Best For You

Use our free recommendation engine to learn which Software Development Analytics solutions are best for your needs.

See Recommendations

770,428 professionals have used our research since 2012.

Questions from the Community

What do you like most about CAST Application Intelligence Platform?

Top Answer:CAST's risk and security flow detection capabilities are highly effective, particularly in identifying security vulnerabilities. It is one of the most important and valuable features of the platform… more »

Read all 3 answers →

What needs improvement with CAST Application Intelligence Platform?

Top Answer:Areas for improvement in CAST AIP include enhancing support for implementation in complex environments and improving technical support to address organizational challenges alongside engineering… more »

Read all 3 answers →

What is your primary use case for CAST Application Intelligence Platform?

Top Answer:CAST AIP is a valuable solution for quality metrics and application security. It is beneficial for software architecture detection.

Read all 3 answers →

How would you decide between Coverity and Sonarqube?

Top Answer:We researched Coverity, but in the end, we chose SonarQube. SonarQube is a tool for reviewing code quality and security. It helps to guide our development teams during code reviews by providing… more »

What do you like most about Coverity?

Top Answer:The solution has improved our code quality and security very well.

Read all 23 answers →

What is your experience regarding pricing and costs for Coverity?

Top Answer:The tool was fairly priced.

Read all 20 answers →

Ranking

3rd

out of 10 in Software Development Analytics

Views

1,014

Comparisons

687

Reviews

Average Words per Review

860

Rating

7.5

4th

out of 67 in Application Security Testing (AST)

Views

17,611

Comparisons

11,453

Reviews

Average Words per Review

382

Rating

8.0

Comparisons

SonarQube vs. CAST Application Intelligence Platform

Compared 68% of the time.

Fortify Application Defender vs. CAST Application Intelligence Platform

Compared 13% of the time.

Fortify on Demand vs. CAST Application Intelligence Platform

Compared 9% of the time.

Checkmarx One vs. CAST Application Intelligence Platform

Compared 7% of the time.

BlueOptima vs. CAST Application Intelligence Platform

Compared 3% of the time.

More CAST Application Intelligence Platform Competitors →

SonarQube vs. Coverity

Compared 51% of the time.

Klocwork vs. Coverity

Compared 9% of the time.

Fortify on Demand vs. Coverity

Compared 7% of the time.

Checkmarx One vs. Coverity

Compared 6% of the time.

Veracode vs. Coverity

Compared 6% of the time.

More Coverity Competitors →

Also Known As

CAST AIP

Synopsys Static Analysis

Learn More

CAST

Synopsys

Overview

CAST Application Intelligence Platform (AIP), a result of over $130M in R&D investment over two decades, is an enterprise-grade software measurement and quality analysis solution designed to analyze multi-tiered, multi-technology applications for technical vulnerabilities and adherence to architectural and coding standards and then provide business relevant information to the IT organization through various dashboards and products built with end users in mind.

Application Analytics Dashboard (CAST AAD): Provides IT executives with accurate business relevant analytics to drive their organization
Application Engineering Dashboard (CAST AED): Provides engineering and QA teams with powerful code and system level structural flaw insight and remediation guidance
Enlighten: Delivers to developers a powerful deep understanding of their application’s structure
Architecture Checker: Gives architects a reliable, automated solution to enforce architectures that deliver stability and performance of their critical applications

CAST’s underlying system-level analysis technology assesses both the health of an application, as measured through numerous health factors, as well as specific structural and system-level defects that drive performance and stability issues providing true system level analysis.

Coverity gives you the speed, ease of use, accuracy, industry standards compliance, and scalability that you need to develop high-quality, secure applications. Coverity identifies critical software quality defects and security vulnerabilities in code as it’s written, early in the development process, when it’s least costly and easiest to fix. With the Code Sight integrated development environment (IDE) plugin, developers get accurate analysis in seconds in their IDE as they code. Precise actionable remediation advice and context-specific eLearning help your developers understand how to fix their prioritized issues quickly, without having to become security experts.

Coverity seamlessly integrates automated security testing into your CI/CD pipelines and supports your existing development tools and workflows. Choose where and how to do your development: on-premises or in the cloud with the Polaris Software Integrity Platform (SaaS), a highly scalable, cloud-based application security platform. Coverity supports 22 languages and over 70 frameworks and templates.

Sample Customers

Steria, T-Systems MMS, Atos Origin, Accenture, Capgemini

MStar Semiconductor, Alcatel-Lucent

Top Industries

VISITORS READING REVIEWS

Financial Services Firm25%

Computer Software Company14%

Manufacturing Company13%

Insurance Company9%

REVIEWERS

Manufacturing Company36%

Comms Service Provider20%

Computer Software Company20%

Retailer8%

VISITORS READING REVIEWS

Manufacturing Company28%

Computer Software Company16%

Financial Services Firm8%

Government4%

Company Size

VISITORS READING REVIEWS

Small Business12%

Midsize Enterprise11%

Large Enterprise77%

REVIEWERS

Small Business16%

Midsize Enterprise14%

Large Enterprise70%

VISITORS READING REVIEWS

Small Business14%

Midsize Enterprise10%

Large Enterprise76%

CAST Application Intelligence Platform vs Coverity comparison