• Home
  • Polyspace Code Prover vs. Sonatype Repository Firewall

Polyspace Code Prover vs Sonatype Repository Firewall comparison

Cancel
You must select at least 2 products to compare!
MathWorks Logo

Polyspace Code Prover

Read 5 Polyspace Code Prover reviews
1,773 views|1,161 comparisons
80% willing to recommend
Sonatype Logo

Sonatype Repository Firewall

Read 3 Sonatype Repository Firewall reviews
826 views|405 comparisons
100% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Polyspace Code Prover vs. Sonatype Repository Firewall
March 2024
Executive Summary

We performed a comparison between Polyspace Code Prover and Sonatype Repository Firewall based on real PeerSpot user reviews.

Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed Polyspace Code Prover vs. Sonatype Repository Firewall Report (Updated: March 2024).
Download the complete report
768,740 professionals have used our research since 2012.
Featured Review
Anonymous User
Enhanced our code verification process but it crashes on large applications
Ashish Shukla
You will get clean code every time, and that's a great achievement
I believe this tool is being used by most of the product development team in the organization. It's part of the CI/CD pipeline. You can say it's a... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The product detects memory corruptions.""Polyspace Code Prover is a very user-friendly tool.""The outputs are very reliable.""Polyspace Code Prover has made me realize it differs from other static code analysis tools because it runs the code. So it's quite distinct in that aspect.""When we work on safety modules, it is mandatory to fulfill ISO 26262 compliance. Using Prover helps fulfill the standard on top of many other quality checks, like division by zero, data type casts, and null pointer dereferences."

More Polyspace Code Prover Pros →

"The product's network and intrusion protection features are valuable. It also has rules and compliance features for security.""Another thing that I like about Sonatype is that if you download something today, and five days from today it becomes vulnerable, it will notify you."

More Sonatype Repository Firewall Pros →

Cons
"I'd like the data to be taken from any format.""One of the main disadvantages is the time it takes to initiate the first run.""The tool has some stability issues.""Using Code Prover on large applications crashes sometimes.""Automation could be a challenge."

More Polyspace Code Prover Cons →

"What I don't like is the lack of an option to pick up the phone and call someone for support. That is something they need to improve on. They need to have a professional services package, or they need to include that option with their services.""The tool needs to improve its file systems. The product should also include zero test feature."

More Sonatype Repository Firewall Cons →

Pricing and Cost Advice
  • "We use the paid version."

    • More Polyspace Code Prover Pricing and Cost Advice →

  • "The pricing is reasonable if you're a large enterprise developing code. It's not super-expensive."

    • More Sonatype Repository Firewall Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Application Security Tools solutions are best for your needs.
    See Recommendations
    768,740 professionals have used our research since 2012.
    Questions from the Community
    What do you like most about Polyspace Code Prover?
    Top Answer:When we work on safety modules, it is mandatory to fulfill ISO 26262 compliance. Using Prover helps fulfill the standard on top of many other quality checks, like division by zero, data type casts… more »
    Read all 5 answers   →
    What is your experience regarding pricing and costs for Polyspace Code Pr...
    Top Answer:We use the paid version.
    Read all 4 answers   →
    What needs improvement with Polyspace Code Prover?
    Top Answer:There are two main areas of improvement. * False negatives and false positives. * The speed of the validation itself. Another area I see for improvement is scalability, particularly when dealing with… more »
    Read all 5 answers   →
    What do you like most about Sonatype Nexus Firewall?
    Top Answer:The product's network and intrusion protection features are valuable. It also has rules and compliance features for security.
    Read all 2 answers   →
    What is your experience regarding pricing and costs for Sonatype Nexus Fi...
    Top Answer:The licensing is quite reasonable, I believe. I do see that it adds value. It means whatever part you want to use, you can just use that part and pay for that. I think the licensing is fair enough… more »
    Read all 2 answers   →
    What is your primary use case for Sonatype Nexus Firewall?
    Top Answer:The product helps with vulnerability and security assessment. It also helps with assessment at the configuration level.
    Read all 3 answers   →
    Ranking
    23rd
    out of 74 in Application Security Tools
    Views
    1,773
    Comparisons
    1,161
    Reviews
    5
    Average Words per Review
    656
    Rating
    7.6
    31st
    out of 74 in Application Security Tools
    Views
    826
    Comparisons
    405
    Reviews
    2
    Average Words per Review
    531
    Rating
    8.5
    Comparisons
    Also Known As
    Sonatype Nexus Firewall, Nexus Firewall
    Learn More
    MathWorks
    Video Not Available
    Sonatype
    Overview

    Polyspace Code Prover is a sound static analysis tool that proves the absence of overflow, divide-by-zero, out-of-bounds array access, and certain other run-time errors in C and C++ source code. It produces results without requiring program execution, code instrumentation, or test cases. Polyspace Code Prover uses semantic analysis and abstract interpretation based on formal methods to verify software interprocedural, control, and data flow behavior. You can use it on handwritten code, generated code, or a combination of the two. Each operation is color-coded to indicate whether it is free of run-time errors, proven to fail, unreachable, or unproven.

    Sonatype Repository Firewall is a cloud-based security solution designed to safeguard your software supply chain against malicious components. It operates by meticulously scanning and evaluating each new component against customized governance policies, thereby effectively identifying and blocking potential threats before they infiltrate your development pipeline. What sets Sonatype Repository Firewall apart is its user-friendly setup, seamless integration with existing workflows, and remarkable scalability, making it suitable for software development environments of any size. Key features include blocking malicious components through behavioral analysis, malware scanning, and vulnerability assessment, as well as the ability to enforce custom governance policies. By utilizing this tool, organizations can enhance their software supply chain security, mitigate risks related to supply chain attacks, bolster compliance with industry standards, and ultimately reduce costs associated with security incidents. 

    Sample Customers
    Alenia Aermacchi, CSEE Transport, Delphi Diesel Systems, EADS, Institute for Radiological Protection and Nuclear Safety, Korean Air, KOSTAL, Miracor, NASA Ames Research Center
    EDF, Tomitribe, Crosskey, Blackboard, Travel audience
    Top Industries
    VISITORS READING REVIEWS
    Manufacturing Company34%
    Computer Software Company15%
    Transportation Company7%
    Retailer5%
    VISITORS READING REVIEWS
    Financial Services Firm32%
    Government8%
    Computer Software Company7%
    Insurance Company5%
    Company Size
    VISITORS READING REVIEWS
    Small Business14%
    Midsize Enterprise10%
    Large Enterprise76%
    VISITORS READING REVIEWS
    Small Business14%
    Midsize Enterprise11%
    Large Enterprise75%
    Buyer's Guide
    Polyspace Code Prover vs. Sonatype Repository Firewall
    March 2024
    Free Report: Polyspace Code Prover vs. Sonatype Repository Firewall
    Find out what your peers are saying about Polyspace Code Prover vs. Sonatype Repository Firewall and other solutions. Updated: March 2024.
    DOWNLOAD NOW
    768,740 professionals have used our research since 2012.

    Polyspace Code Prover is ranked 23rd in Application Security Tools with 5 reviews while Sonatype Repository Firewall is ranked 31st in Application Security Tools with 3 reviews. Polyspace Code Prover is rated 7.6, while Sonatype Repository Firewall is rated 8.4. The top reviewer of Polyspace Code Prover writes "A stable solution for developing software components". On the other hand, the top reviewer of Sonatype Repository Firewall writes "You will get clean code every time, and that's a great achievement". Polyspace Code Prover is most compared with SonarQube, Coverity, Klocwork, CodeSonar and Parasoft SOAtest, whereas Sonatype Repository Firewall is most compared with JFrog Xray, Cisco Secure Firewall, GitHub, Black Duck and Snyk. See our Polyspace Code Prover vs. Sonatype Repository Firewall report.

    See our list of best Application Security Tools vendors.

    We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.