2019-03-11T07:21:00Z

What advice do you have for others considering Coverity?


If you were talking to someone whose organization is considering Coverity, what would you say?

How would you rate it and why? Any other tips or advice?

Guest
44 Answers

author avatar
Top 5LeaderboardReal User

We also purchased Black Duck Binary Analysis and the Black Duck Hub from Synopsys. My advice for anybody who is implementing this solution is to try to best capture security issues while the code is being written, rather than waiting until it is compiling. It’s easier and much more cost-effective to find vulnerabilities at the earlier, code-writing stage. The other thing to keep in mind is that you should not rely on one approach to code security. You need to make sure that binary security is also in place, which is not done using Coverity. Any company that wants to secure its environment will need multiple levels of security scanning, and only one of these is handled by Coverity. The second one, binary scanning, can be done by using Black Duck or Veracode. This continues onto other security concerns, such as network scanning. I would rate this solution a seven out of ten.

2020-04-02T07:00:09Z
author avatar
Real User

I would recommend this solution depending on the language you're using, Java and C++. I would rate it a five out of ten. Not a ten because it's not efficient for the language we use.

2019-08-26T06:42:00Z
author avatar
Top 20Real User

I will suggest that when they use the program for a new project, they should just copy the data from a mature solution to the new project because the setup really takes a long time. We spent a lot of time to set Coverity up because I thought of creating the project in the Coverity server and use Coverity for the sonar part properly. But it took a long time. I will give the solution a 7.5 rating out of ten. When we officially use all the data, it will accumulate more experiences and then we will have different opinions.

2019-08-22T05:49:00Z
author avatar
Real User

Try it out for yourself, and decide whether it's useful for you.

2019-03-11T07:21:00Z
Learn what your peers think about Coverity. Get advice and tips from experienced pros sharing their opinions. Updated: October 2020.
442,764 professionals have used our research since 2012.