We performed a comparison between Checkmarx One and Coverity based on real PeerSpot user reviews.
Find out in this report how the two Application Security Testing (AST) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It can integrate very well with DAST solutions. So both of them are combined into an integrated solution for customers running application security."
"The most valuable features are the easy to understand interface, and it 's very user-friendly."
"The best thing about Checkmarx is the amount of vulnerabilities that it can find compared to other free tools."
"The user interface is excellent. It's very user friendly."
"Apart from software scanning, software composition scanning is valuable."
"The most valuable features of Checkmarx are the Best Fix Location and the Payments option because you can save a lot of time trying to mitigate the configuration. Using these tools can save you a lot of time."
"The features and technologies are very good. The flexibility and the roadmap have also been very good. They're at the forefront of delivering the additional capabilities that are required with cloud delivery, etc. Their ability to deliver what customers require and when they require is very important."
"Compared to the solutions we used previously, Checkmarx has reduced our workload by almost 75%."
"It provides reports about a lot of potential defects."
"The most valuable feature is the integration with Jenkins."
"The most valuable feature of Coverity is the wrapper. We use the wrapper to build the C++ component, then we use the other code analysis to analyze the code to the build object, and then send back the result to the SonarQube server. Additionally, it is a powerful capabilities solution."
"The interface of Coverity is quite good, and it is also easy to use."
"Coverity is scalable."
"Provides software security, and helps to find potential security bugs or defects."
"Coverity is easy to set up and has a less lengthy process to find vulnerabilities."
"Coverity gives advisory and deviation features, which are some of the parts I liked."
"Checkmarx could improve by reducing the price."
"The statistics module has a function that allows you to show some statistics, but I think it's limited. Maybe it needs more information."
"The reports are good, but they still need to be improved considering what the UI offers."
"It is an expensive solution."
"C, C++, VB and T-SQL are not supported by this product. Although, C and C++ were advertised as being supported."
"The resolutions should also be provided. For example, if the user faces any problem regarding an installation due to the internal security policies of their company, there should be a resolution offered."
"Meta data is always needed."
"I expect application security vendors to cover all aspects of application security, including SAST, DAST, and even mobile application security testing. And it would be much better if they provided an on-premises and cloud option for all these main application security features."
"I would like to see integration with popular IDEs, such as Eclipse."
"Coverity is not stable."
"The quality of the code needs improvement."
"When I put my code into Coverity for scanning, the code information of the product is in the system. The solution could be improved by providing a SBOM, a software bill of material."
"Some features are not performing well, like duplicate detection and switch case situations."
"Sometimes it's a bit hard to figure out how to use the product’s UI."
"The setup takes very long."
"SCM integration is very poor in Coverity."
Checkmarx One is ranked 3rd in Application Security Testing (AST) with 67 reviews while Coverity is ranked 4th in Application Security Testing (AST) with 33 reviews. Checkmarx One is rated 7.6, while Coverity is rated 7.8. The top reviewer of Checkmarx One writes "The report function is a great, configurable asset but sometimes yields false positives". On the other hand, the top reviewer of Coverity writes "Best SAST tool to check software quality issues". Checkmarx One is most compared with SonarQube, Veracode, Fortify on Demand, Snyk and Mend.io, whereas Coverity is most compared with SonarQube, Klocwork, Fortify on Demand, Veracode and Polyspace Code Prover. See our Checkmarx One vs. Coverity report.
See our list of best Application Security Testing (AST) vendors.
We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.