ReShaper vs Veracode Comparison 2024

ReShaper

Veracode

ReShaper

Read 2 ReShaper reviews

1,340 views|1,143 comparisons

Veracode

Read 194 Veracode reviews

5,895 views|3,861 comparisons

Comparison Buyer's Guide

Download the complete report

Buyer's Guide

Static Code Analysis

April 2024

Executive Summary

We performed a comparison between ReShaper and Veracode based on real PeerSpot user reviews.

Find out what your peers are saying about Veracode, Checkmarx, OpenText and others in Static Code Analysis.

To learn more, read our detailed Static Code Analysis Report (Updated: April 2024).

Download the complete report

769,479 professionals have used our research since 2012.

Featured Review

Anonymous User

Software Engineer at a tech services company

Detects, analyzes, and fixes any coding issues

Anonymous User

Lead Consultant DevOps and Infrastructure at a tech vendor

Prevents vulnerable code, offers end-to-end visibility, and saves our developers time

Veracode's ability to prevent vulnerable code from entering the production environment is good. Using Veracode's ASC team is easy. I can send them... Read more →

Quotes From Members

We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:

Pros

"The most valuable feature of ReShaper is that it provides continuously scanning of the data in real-time. ReShaper has a really good mechanism and process, they have a decent system.""It comes with many features and supports almost all of the coding languages available."

More ReShaper Pros →

"Code scanning is the most valuable feature.""The findings of their security analysis are wonderful. You can easily go through all the analyses done by Veracode. You can see what are the flaws and what could be the best possible resolution to minimize those flaws in the application. When an application is being used by the public, security is a challenge. Veracode helps us to analyze all the security flaws, discrepancies, and vulnerabilities inside the application. It provides good reports.""My experience with Veracode across the board every time, in all products, the technology, the product, the service, and the salespeople is fabulous.""One of the valuable features is that it gives us the option of static scanning. Most tools of this type are centered around dynamic scanning. Having a static scan is very important.""The capability to identify vulnerable code is the most valuable feature of Veracode.""The product’s policy reporting for ensuring compliance with industry standards and regulations is great.""The Veracode technical support is very good. They are responsive and very knowledgeable.""I like Veracode's ease of integration and onboarding. You can quickly and easily get started with a new project or application. That's one area where Veracode shines relative to other tools we've evaluated. Other tools need more work or an engineer to do the setup. With Veracode, you can do the onboarding in a few steps quickly."

More Veracode Pros →

Cons

"When it's integrated with a weak server machine, the performance isn't that great. It starts up slowly and even crashes at times.""ReShaper could improve by increasing the performance of the scans. Their application is taking too much CPU. The processing is taking too many CPU resources which causes the system to slow down."

More ReShaper Cons →

"If you schedule two parallel scans under the same project, one of them will be a failure.""The one thing I'd like to be able to do is schedule dynamic scans. Today we're kicking those off manually, but I believe that it's something have on their roadmap.""An area for improvement in Veracode is the time that it takes to scan large projects, as that makes it difficult to fit into our CI/CD pipelines.""Ideally, I would like better reporting that gives me a more concise and accurate description of what my pain points are, and how to get to them.""We get some false positives with JavaScript languages like React, TypeScript, and Angular. The problem is rooted in the build process of JavaScript, not the code we are using. This is something we spend lots of time trying to resolve. When we point to a specific library and review that on the code, we can see it is a part of the build that isn't going into production. It's only a part of the build because JavaScript has a different build process.""Veracode Static Analysis lacks penetration testing, so that's a concern. The tool is also unable to scan when it's a C or C++ model, so that's another area for improvement.""Scanning progress is highly dependent on the speed of the Internet.""In the last month or so, I had a problem with the APIs when doing some implementations. The Veracode support team could be more specific and give me more examples. They shouldn't just copy the URL for a doc and send it to me."

More Veracode Cons →

Pricing and Cost Advice

"As far as I know, the licensing isn't very cheap."

More ReShaper Pricing and Cost Advice →

"Its complexity makes it quite expensive, but it’s all worth it, with all the engineering in the background."

"The pricing is pretty high."

"The worst part about the product is that it does not scale at all. Also, microservices apps will cost you a fortune."

"I think licensing needs to be changed or updated so that it works with adjustments. Pricing is expensive compared to the amount of scanning we perform."

"It's worth the value"

"Pricing seems fair for what is offered, and licensing has been no problem. All developers are able to get the access they need."

"It can be expensive to do this, so I would just make sure that you're getting the proper number of licenses. Do your analysis. Make sure you know exactly what it is you need, going in."

"The licensing and prices were upfront and clear. They stand behind everything that is said during the commercial phase and during the onboarding phase. Even the most irrelevant "that can be done" was delivered, no matter how important the request was."

More Veracode Pricing and Cost Advice →

See Which Vendors Are Best For You

Use our free recommendation engine to learn which Static Code Analysis solutions are best for your needs.

See Recommendations

769,479 professionals have used our research since 2012.

Questions from the Community

What do you like most about ReShaper?

Top Answer:The most valuable feature of ReShaper is that it provides continuously scanning of the data in real-time. ReShaper has a really good mechanism and process, they have a decent system.

Read all 2 answers →

What needs improvement with ReShaper?

Top Answer:ReShaper could improve by increasing the performance of the scans. Their application is taking too much CPU. The processing is taking too many CPU resources which causes the system to slow down.

Read all 2 answers →

What is your primary use case for ReShaper?

Top Answer:ReShaper is a static code analysis tool.

Read all 2 answers →

Which gives you more for your money - SonarQube or Veracode?

Top Answer:SonarQube is easy to deploy and configure, and also integrates well with other tools to do quality code analysis. SonarQube has a great community edition, which is open-source and free. Easy to use… more »

Read all 6 answers →

What do you like most about Veracode?

Top Answer:The SAST and DAST modules are great.

Read all 96 answers →

What is your experience regarding pricing and costs for Veracode?

Top Answer:The product’s price is a bit higher compared to other solutions. However, the tool provides good vulnerability and database features. It is worth the money.

Read all 66 answers →

Ranking

7th

out of 20 in Static Code Analysis

Views

1,340

Comparisons

1,143

Reviews

Average Words per Review

Rating

N/A

1st

out of 20 in Static Code Analysis

Views

5,895

Comparisons

3,861

Reviews

101

Average Words per Review

976

Rating

8.1

Comparisons

Whole Tomato Visual Assist vs. ReShaper

Compared 93% of the time.

Fortify Static Code Analyzer vs. ReShaper

Compared 7% of the time.

More ReShaper Competitors →

SonarQube vs. Veracode

Compared 27% of the time.

Checkmarx One vs. Veracode

Compared 14% of the time.

Fortify on Demand vs. Veracode

Compared 7% of the time.

Snyk vs. Veracode

Compared 6% of the time.

OWASP Zap vs. Veracode

Compared 4% of the time.

More Veracode Competitors →

Also Known As

Crashtest Security , Veracode Detect

Learn More

JetBrains

Veracode

Overview

ReSharper extends Visual Studio with over 2200 on-the-fly code inspections for C#, VB.NET, ASP.NET, JavaScript, TypeScript and other technologies. For most inspections, ReSharper provides quick-fixes (light bulbs) to improve the code.

Veracode is a leading application security platform that helps organizations to develop and deliver secure software. Veracode's solution provides comprehensive capabilities for static analysis, dynamic analysis, software composition analysis, and manual penetration testing.

Veracode's static analysis solution scans source code for various security vulnerabilities, including common web application attack vectors, injection flaws, cross-site scripting, and insecure direct object references. Veracode's dynamic analysis solution simulates real-world attacks to identify vulnerabilities that may not be detectable by static analysis alone. Veracode's software composition analysis solution scans open-source and third-party components for known vulnerabilities. Veracode's manual penetration testing service is performed by experienced security professionals who use a variety of techniques to identify vulnerabilities in software applications.

Many organizations, including Fortune 500 companies, government agencies, and startups, use Veracode's solution. Veracode's customers rely on Veracode to help them to improve the security of their software applications and to reduce the risk of data breaches and other security incidents.

Here are some of the benefits of using Veracode:

Veracode provides capabilities for static analysis, dynamic analysis, software composition analysis, and manual penetration testing to help organizations identify and fix security vulnerabilities in their software applications early in the development process.
Veracode helps organizations reduce the risk of data breaches and other security incidents by identifying and fixing security vulnerabilities in their software application.
Veracode helps organizations to comply with industry regulations. Many industries have regulations that require organizations to implement security measures to protect their customers' data. Veracode's solution can help organizations to comply with these regulations by providing them with the tools and resources they need to identify and fix security vulnerabilities in their software applications.

Sample Customers

Information Not Available

Manhattan Associates, Azalea Health, Sabre, QAD, Floor & Decor, Prophecy International, SchoolCNXT, Keap, Rekner, Cox Automotive, Automation Anywhere, State of Missouri and others.

Top Industries

VISITORS READING REVIEWS

Computer Software Company20%

Comms Service Provider11%

Financial Services Firm8%

Manufacturing Company7%

REVIEWERS

Computer Software Company26%

Financial Services Firm23%

Insurance Company9%

Comms Service Provider6%

VISITORS READING REVIEWS

Financial Services Firm18%

Computer Software Company15%

Manufacturing Company8%

Government6%

Company Size

VISITORS READING REVIEWS

Small Business20%

Midsize Enterprise8%

Large Enterprise72%

REVIEWERS

Small Business31%

Midsize Enterprise20%

Large Enterprise49%

VISITORS READING REVIEWS

Small Business17%

Midsize Enterprise13%

Large Enterprise70%

ReShaper vs Veracode comparison