2017-07-05T06:05:00Z

What is your primary use case for Klocwork?


How do you or your organization use this solution?

Please share with us so that your peers can learn from your experiences.

Thank you!

Guest
99 Answers

author avatar
Top 10Real User

Our primary use case of Klocwork is for static project analysis and for getting ratios.

2019-11-21T10:01:00Z
author avatar
Top 5Real User

I'm a product architect and belong to a classic management system team. We're a Klocwork customer. We have around 50-60 developers in the team and I'm involved in the utilization of the tool and I am familiar with its capability. We've just started using the latest version which is the first one that's compatible with .NET framework 4.7.2. The previous version was not fully compatible with Visual Studio 2017. In our case, the use is for static code analysis for each baseline in order to see what kind of violation we have. Parallel to that, we use the results and apply some refactoring in order to solve this violation. For us, the violation is considered the highest priority according to our risk assessment model.

2019-11-14T06:34:00Z
author avatar
Real User

We currently use Klocwork mainly for static code analysis.

2019-06-11T11:10:00Z
author avatar
Top 20Real User

Our main test case is to check for some of our internal standards which we usually do manually. But when we got Klocwork, it completely changed the scenario. We are writing a simple logic for checking our internal standards without much overhead.

2018-12-31T11:09:00Z
author avatar
Top 10Real User

My primary case would be checking for memory related issues and some null pointer issues where Klocwork is too strong in this section. We used to check these issues most often, and Klocwork is the one which provides us this clear way.

2018-12-21T11:56:00Z
author avatar
Top 5LeaderboardUser

Our main test case is to check for some of our internal standards which we usually do manually. But when we got Klocwork, it completely changed the scenario. We are writing a simple logic for checking our internal standards without much overhead. One more is on the fly analysis which is the most important feature which Klocwork provides I believe.

2018-11-19T07:29:00Z
author avatar
Real User

It is a static analysis tool for application security. It does more than that because it does look for code, such as a NULL pointer dereference. Basically, just attempting to get the code as clean and free of errors as possible. I think of application security as a vulnerability within the application that could actually lead to other vulnerabilities, escalation of privileges, or a hostile take-over the computer. I tend to think of denial of service attacks against an application as someone being a problem. They are denying the application from executing. Klocwork goes beyond this and finds things like coding problems, such as you need to divide by zero.

2018-08-02T11:48:00Z
author avatar
Top 5LeaderboardUser

Our primary use case is to check our Internal Standards which is always a burden because it involves lot of manual checking. We are using Klocwork for this by writing some algorithms and implementing it in Klocwork. Klocwork is very strong in this section.

2018-07-12T05:12:00Z
author avatar
Top 5LeaderboardReal User

our primary use case was to find and fix all possible static vulnerabilities like Buffer over flow, null pointer check, array out of bounds, concurrency violations, etc.., We work on Linux platform with gcc compiler.

2017-07-05T06:05:00Z
Find out what your peers are saying about Perforce, SonarQube, Veracode and others in Application Security. Updated: September 2020.
439,184 professionals have used our research since 2012.