We performed a comparison between Coverity and Parasoft SOAtest based on real PeerSpot user reviews.
Find out in this report how the two Static Application Security Testing (SAST) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."We were very comfortable with the initial setup."
"The solution effectively identifies bugs in code."
"One of the most valuable features is Contributing Events. That particular feature helps the developer understand the root cause of a defect. So you can locate the starting point of the defect and figure out exactly how it is being exploited."
"The security analysis features are the most valuable features of this solution."
"I like Coverity's capability to scan codes once we push it. We don't need more time to review our colleagues' codes. Its UI is pretty straightforward."
"The ability to scan code gives us details of existing and potential vulnerabilities. What really matters for us is to ensure that we are able to catch vulnerabilities ahead of time."
"The most valuable feature of Coverity is that it shows examples of what is actually wrong with the code."
"The solution has improved our code quality and security very well."
"Since the solution has both command line and automation options, it generates good reports."
"The solution is scalable."
"Parasoft SOAtest has improved the quality of our automated web services, which can be easily implemented through service chaining and service virtualization."
"Good write and read files which save execution inputs and outputs and can be stored locally."
"We have seen a return on investment."
"Technical support is helpful."
"They have a feature where they can record traffic and create tests on the report traffic."
"We do a lot of web services testing and REST services testing. That is the focus of this product."
"The product lacks sufficient customization options."
"The product should include more customization options. The analytics is not as deep as compared to SonarQube."
"Some features are not performing well, like duplicate detection and switch case situations."
"Its price can be improved. Price is always an issue with Synopsys."
"The solution's user interface and quality gate could be improved."
"Ideally, it would have a user-based license that does not have a restriction in the number of lines of code."
"Sometimes it's a bit hard to figure out how to use the product’s UI."
"It should be easier to specify your own validation routines and sanitation routines."
"The product is very slow to start up, and that is a bit of a problem, actually."
"Reports could be customized and more descriptive according to the user's or company's requirements."
"Reporting facilities can be better."
"Parasoft SOAtest has an internal refresh function where you can refresh the software to show the changes you’ve made in your projects. Unfortunately this function does not work properly, because it often does not show the changes after you’ve hit te refresh button a few times."
"Enabling/disabling an optional element of an XML request is only possible if a data source (e.g., Excel sheet) is connected to the test. Otherwise, the option is not available at all in the drop-down menu."
"The feedback that we received from the DevOps of our organization was that the tool was a little heavy from the transformation perspective."
"The performance could be a bit better."
"Compatibility with HTTP 1.1 and TLS 1.2 needs to be improved."
Coverity is ranked 4th in Static Application Security Testing (SAST) with 33 reviews while Parasoft SOAtest is ranked 28th in Static Application Security Testing (SAST) with 30 reviews. Coverity is rated 7.8, while Parasoft SOAtest is rated 8.2. The top reviewer of Coverity writes "Best SAST tool to check software quality issues". On the other hand, the top reviewer of Parasoft SOAtest writes "Reliable with a good interface but uses too much memory". Coverity is most compared with SonarQube, Klocwork, Fortify on Demand, Checkmarx One and SonarCloud, whereas Parasoft SOAtest is most compared with Postman, SonarQube, Polyspace Code Prover, Klocwork and ReadyAPI. See our Coverity vs. Parasoft SOAtest report.
See our list of best Static Application Security Testing (SAST) vendors.
We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.