Klocwork Reviews

Filter by:Reset all filters
industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
rating
Loading...
Filter Unavailable
Bob Dean
Real User
Principle Engineer with 501-1,000 employees
Aug 06 2018

What is most valuable?

The lack of false positives or low false positive rate; I like not having to dig through false positives. Chasing down a false positive can take anywhere from five minutes… more»

How has it helped my organization?

It would be great if we could use Klocwork at the company. However, I work at a government facility, and I analyze government software. My company should also be using… more»

What needs improvement?

It is not a panacea, because there is no tool that is a panacea. We bought Klocwork, but it was limited to one little program, but the program is now sort of failing. So… more»

What's my experience with pricing, setup cost, and licensing?

Klocwork should not to be quite so heavy handed on the licensing for very specific programs. We paid a very high price for Klocwork, and the reason why we paid such a high… more»

If you previously used a different solution, which one did you use and why did you switch?

I previously used David Wheeler's Flawfinder. I still use it for sanity checks, but it has a 70% to 80% false positive rate.

What other advice do I have?

Make sure before you go to a new major upgrade of Klocwork that you copy your database. Shut down Klocwork and all of its services. Then, back up the database before you… more»

Which other solutions did I evaluate?

Fortify is not trying very hard anymore. Fortify is lagging behind. Fortify used to be the leader. Klocwork has caught up to them and surpassed them. They have a higher… more»
Sivanesh Waran
Real User
Sr. Software Solution Engineer at Meteonic Innovation Pvt Ltd at a tech services company with 11-50 employees
Jan 09 2019

What is most valuable?

The pre-checkin code review, industry standard checks, continuous integration (CI) and customized checkers are the most valuable features.

How has it helped my organization?

It has helped our organization to produce the non-defective code right at the developer's desktop. So we were able to deliver releases on time.

What needs improvement?

It would be nice to consider having more language support ability. Currently Klocwork supports C/C++, Java and C#, (Android*)

What's my experience with pricing, setup cost, and licensing?

The Klocwork tool is worth the price that they have quoted.

If you previously used a different solution, which one did you use and why did you switch?

We were using three Open Source static analyzers and faced lots of false-positives and false-negatives. Klocwork has given us better results with real issues.

What other advice do I have?

Unlike other static code analysis tools, Klocwork integrates seamlessly into desktop IDEs, build systems, continuous integration tools, and any team's natural workflow… more»

Which other solutions did I evaluate?

we have evaluated multiple open source tools and few commercial tools.
Find out what your peers are saying about Rogue Wave, SonarQube, Synopsys and others in Application Security. Updated: October 2019.
371,062 professionals have used our research since 2012.
Ravi
User
Software Solutions Engineer at a tech services company with 11-50 employees
Jul 09 2019

What is most valuable?

First will be the on the fly analysis as it is reducing the time for developing a code. One more best thing is the reports section which is very nice to understand. Also… more»

How has it helped my organization?

* It has reduced the manual analysis for a lot of scenarios like checking for internal standards. * It has saved a lot of time in developing a code through on the fly… more»

What needs improvement?

Not much as of now. But I am feeling Klocwork should support more number of languages like other static code analyzers do. Right now Klocwork has supportability available… more»

What's my experience with pricing, setup cost, and licensing?

I don't know much about cost and licensing as my management is looking at these things.

If you previously used a different solution, which one did you use and why did you switch?

I evaluated some other tools, but I don't want to reveal the names of these tools. I didn't find them as good tools when compared with Klocwork.

What other advice do I have?

Not much as of now.

Which other solutions did I evaluate?

I evaluated some other tools, but I don't want to reveal the names of these tools. I didn't find them as good tools when compared with Klocwork.
Ravi
User
Software Solutions Engineer at a tech services company with 11-50 employees
Dec 12 2018

What is most valuable?

The ability to create custom checkers, which is an important part of most of the projects. Its on the fly capability is very good.

How has it helped my organization?

As said earlier checking our industry standards is main burden which involves lot of manual work. Now Klocwork has completely removed this and we are very easily checking… more»

What needs improvement?

Nothing as of now. I hope that in each new release they add new features relating to the addition of checkers, improving their analysis engines etc. In the near future I… more»

What's my experience with pricing, setup cost, and licensing?

It is worth it for the price that the vendor quoted.

If you previously used a different solution, which one did you use and why did you switch?

I didn't use any tools other than Klocwork.

What other advice do I have?

Support for more languages would be helpful since this is my trustworthy tool. One more advice from my side would be to do some webinars on Klocwork will be helpful for… more»

Which other solutions did I evaluate?

I evaluated two other tools, which were not matched with Klocwork at any point. I don't want to reveal the names of the tools.
Specialist677
Real User
Specialist at a non-tech company with 5,001-10,000 employees
Jun 16 2019

What needs improvement?

Now the only issue we have is that whenever we need to get the code we have to build it first. Then we can get the report. Without building the source code we have to get the static code and the source code. That's what we are looking into. It would be better if they could provide a solution for this issue, regarding code building, when compiling the report. I would like to see a dashboard added to provide a clear look and feel. The dashboard would then supplement the users to enable them to get a quick view of the content, as long is it is clear. A presentational dashboard would be good.

What other advice do I have?

Klocwork is a good product, but keep in mind that before building the code you have to get a report. Then you use the code. If you don't need to get a report after building the source code then this is a good solution for you. I prefer this tool. I would rate Klocwork as eight out of ten.
Susant Bhuyan
Real User
.Net Developer at a tech vendor
Jan 02 2019

What is most valuable?

* First will be the on-the-fly analysis as it is reducing the time for developing code and report generation. * One more best thing is the reports section which is very nice to understand.

How has it helped my organization?

One more is on-the-fly analysis which is the most important feature, and CI which Klocwork provides I believe.

What needs improvement?

Support for AUTOSAR C++14 by adding a new taxonomy that you can use to ensure compliance with the AUTOSAR C++14 Standard, release 18-03.

What's my experience with pricing, setup cost, and licensing?

I don't know much about cost and licensing as my management is looking at these things.

Which other solutions did I evaluate?

No.
Aditya Palanki
Real User
Embedded Software Developer at a tech services company with 10,001+ employees
Apr 26 2018

What is most valuable?

We like using the static analysis and code refactoring, which are very valuable because of our requirements to meet safety critical levels and reliability.

How has it helped my organization?

The tool helps the team to think beforehand about corner cases or potential bugs that might arise in real-time. This, in turn, increases the efficiency of the project as well as the team.

What needs improvement?

The way to define the rules is too complex. The definition/rules for static analysis could be automated according to various SILs, so as to avoid confusion. It should be semi-flexible. However, this may be due to my limited experience.
Prasad D
Real User
Senior H.R - DevOps & Infrastructure Recruitment Consultant
Dec 30 2018

What do you think of Klocwork?

What is our primary use case?

My primary case would be checking for memory related issues and some null pointer issues where Klocwork is too strong in this section. We used to check these issues most often, and Klocwork is the one which provides us this clear way.

How has it helped my organization?

We are very concerned about these issues for some of the critical projects which are very important for us. Using Klocwork, we have cleared all these issues without much difficulty.

What is most valuable?

Its vast checkers supportability Custom checker creation Industry standards supportability Support to a vast number of IDEs and so on.

What needs improvement?

Nothing much as of now. I feel Klocwork is going in a great way. The one thing I personally feel is that Klocwork must…

Articles

User Assessments By Topic About Klocwork

Find out what your peers are saying about Rogue Wave, SonarQube, Synopsys and others in Application Security. Updated: October 2019.
371,062 professionals have used our research since 2012.

Klocwork Questions

What is Klocwork?

Klocwork detects security, safety, and reliability issues in real-time by using this static code analysis toolkit that works alongside developers, finding issues as early as possible, and integrates with teams, supporting continuous integration and actionable reporting.

Klocwork customers

ACCESS Co Ltd, Risk-AI, Winbond Electronics, Bristol-Myers Squibb Pharmaceutical Research Institute, University of Southern California, Alebra Technologies, SIMULIA, Risk Management Solutions, Brigham Young University, SRD, HRL

Read Archived Reviews
BUYER'S GUIDE
Download our free Application Security Report and find out what your peers are saying about Rogue Wave, SonarQube, Synopsys, and more!
Sign Up with Email