CAST Application Intelligence Platform vs Coverity comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Executive Summary

We performed a comparison between CAST Application Intelligence Platform and Coverity based on real PeerSpot user reviews.

Find out what your peers are saying about Sonar, Snyk, CAST and others in Software Development Analytics.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"Our clients use CAST Highlight for cloud migration. This allows them to remove or remediate the blockers which are highlighted. This part of the solution shows improvement in quality and captures feedback for our clients.""The most valuable feature of the CAST Application Intelligence Platform is its security dashboard which is a dedicated dashboard that's pretty helpful because it gives compliance checks based on some of the leading frameworks in the industry, such as ISO 5055, OWASP, CWE Top 25, and NIST security guidelines. I find the security dashboard of the solution and the information it provides pretty useful. The security dashboard of the CAST Application Intelligence Platform is a feature that stands out.""Used for controlling the technical debt and code quality.""It supports most programming languages."

More CAST Application Intelligence Platform Pros →

"This solution is easy to use.""It has the lowest false positives.""Provides software security, and helps to find potential security bugs or defects.""Coverity gives advisory and deviation features, which are some of the parts I liked.""It is a scalable solution.""The app analysis is the most valuable feature as I know other solutions don't have that.""The product has been beneficial in logging functionality, allowing me to categorize vulnerabilities based on severity. This aids in providing updated reports on subsequent scans.""The product has deeper scanning capabilities."

More Coverity Pros →

Cons
"It has very few plugins to access different code repositories, so source code has to be fed.""Implementation could be made more simpler as it is complex.""The integration of this solution could be improved.""The overall coverage of rules could be improved in the CAST Application Intelligence Platform because it does not cater to or cover all. For example, 2022 CWE coverage is still not available in the CAST Application Intelligence Platform. The solution also covers some NIST rules, but it does not cater to all rules. An additional feature I'd like to see in the next update of the CAST Application Intelligence Platform is for it to provide source code developer and contributor details, especially information on which areas of code were touched. This would be a good insight as the CAST Application Intelligence Platform looks into the source code."

More CAST Application Intelligence Platform Cons →

"It should be easier to specify your own validation routines and sanitation routines.""The product could be enhanced by providing video troubleshooting guides, making issue resolution more accessible. Troubleshooting without visual guides can be time-consuming.""The setup takes very long.""When I put my code into Coverity for scanning, the code information of the product is in the system. The solution could be improved by providing a SBOM, a software bill of material.""The level of vulnerability that this solution covers could be improved compared to other open source tools.""We use GitHub and Gitflow, and Coverity does not fit with Gitflow. I have to create a screen for our branches, and it's a pain for developers. It has been difficult to integrate Coverity with our system.""Coverity is far from perfection, and I'm not 100 percent sure it's helping me find what I need to find in my role. We need exactly what we are looking for, i.e. security errors and vulnerabilities. It doesn't seem to be reporting while we are changing our code.""Coverity takes a lot of time to dereference null pointers."

More Coverity Cons →

Pricing and Cost Advice
  • "I do know how the CAST Application Intelligence Platform is licensed, but I'm not able to give the cost because the price is not listed. My company works with individual vendors, so pricing is on a case-to-case basis, but the vendors give specialized pricing because of the enterprise deployment, though my team is aware of product pricing based on lines of code, based on the number of applications, etc., I'm unable to give the exact licensing costs of the CAST Application Intelligence Platform. My company doesn't have to pay extra for some features or services because all are included as part of the enterprise license. On a scale of one to five, with five being very cheap and one being very expensive, I would rate the CAST Application Intelligence Platform as three out of five."
  • More CAST Application Intelligence Platform Pricing and Cost Advice →

  • "Coverity is quite expensive."
  • "The licensing fees are based on the number of lines of code."
  • "The price is competitive with other solutions."
  • "It is expensive."
  • "Coverity is very expensive."
  • "This is a pretty expensive solution. The overall value of the solution could be improved if the price was reduced. Licensing is done on an annual basis."
  • "The pricing is very reasonable compared to other platforms. It is based on a three year license."
  • "The pricing is on the expensive side, and we are paying for a couple of items."
  • More Coverity Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Software Development Analytics solutions are best for your needs.
    765,234 professionals have used our research since 2012.
    Questions from the Community
    Top Answer:The most valuable feature of the CAST Application Intelligence Platform is its security dashboard which is a dedicated dashboard that's pretty helpful because it gives compliance checks based on some… more »
    Top Answer:The overall coverage of rules could be improved in the CAST Application Intelligence Platform because it does not cater to or cover all. For example, 2022 CWE coverage is still not available in the… more »
    Top Answer:We use CAST Application Intelligence Platform for multiple purposes. One of its use cases is understanding the code health in terms of scalability, reliability, efficiency, and performance. These are… more »
    Top Answer:We researched Coverity, but in the end, we chose SonarQube. SonarQube is a tool for reviewing code quality and security. It helps to guide our development teams during code reviews by providing… more »
    Top Answer:The solution has improved our code quality and security very well.
    Ranking
    Views
    1,025
    Comparisons
    692
    Reviews
    2
    Average Words per Review
    753
    Rating
    8.0
    Views
    18,401
    Comparisons
    11,920
    Reviews
    22
    Average Words per Review
    382
    Rating
    8.0
    Comparisons
    Also Known As
    CAST AIP
    Synopsys Static Analysis
    Learn More
    Overview

    CAST Application Intelligence Platform (AIP), a result of over $130M in R&D investment over two decades, is an enterprise-grade software measurement and quality analysis solution designed to analyze multi-tiered, multi-technology applications for technical vulnerabilities and adherence to architectural and coding standards and then provide business relevant information to the IT organization through various dashboards and products built with end users in mind.

    • Application Analytics Dashboard (CAST AAD): Provides IT executives with accurate business relevant analytics to drive their organization
    • Application Engineering Dashboard (CAST AED): Provides engineering and QA teams with powerful code and system level structural flaw insight and remediation guidance
    • Enlighten: Delivers to developers a powerful deep understanding of their application’s structure
    • Architecture Checker: Gives architects a reliable, automated solution to enforce architectures that deliver stability and performance of their critical applications

    CAST’s underlying system-level analysis technology assesses both the health of an application, as measured through numerous health factors, as well as specific structural and system-level defects that drive performance and stability issues providing true system level analysis.

    Coverity gives you the speed, ease of use, accuracy, industry standards compliance, and scalability that you need to develop high-quality, secure applications. Coverity identifies critical software quality defects and security vulnerabilities in code as it’s written, early in the development process, when it’s least costly and easiest to fix. With the Code Sight integrated development environment (IDE) plugin, developers get accurate analysis in seconds in their IDE as they code. Precise actionable remediation advice and context-specific eLearning help your developers understand how to fix their prioritized issues quickly, without having to become security experts. 

    Coverity seamlessly integrates automated security testing into your CI/CD pipelines and supports your existing development tools and workflows. Choose where and how to do your development: on-premises or in the cloud with the Polaris Software Integrity Platform (SaaS), a highly scalable, cloud-based application security platform. Coverity supports 22 languages and over 70 frameworks and templates.

    Sample Customers
    Steria, T-Systems MMS, Atos Origin, Accenture, Capgemini
    MStar Semiconductor, Alcatel-Lucent
    Top Industries
    VISITORS READING REVIEWS
    Financial Services Firm26%
    Computer Software Company15%
    Manufacturing Company13%
    Insurance Company10%
    REVIEWERS
    Manufacturing Company36%
    Computer Software Company23%
    Comms Service Provider14%
    Retailer9%
    VISITORS READING REVIEWS
    Manufacturing Company27%
    Computer Software Company16%
    Financial Services Firm7%
    Government5%
    Company Size
    VISITORS READING REVIEWS
    Small Business12%
    Midsize Enterprise13%
    Large Enterprise75%
    REVIEWERS
    Small Business18%
    Midsize Enterprise15%
    Large Enterprise68%
    VISITORS READING REVIEWS
    Small Business13%
    Midsize Enterprise10%
    Large Enterprise76%
    Buyer's Guide
    CAST Application Intelligence Platform vs. Snyk
    March 2024
    Find out what your peers are saying about CAST Application Intelligence Platform vs. Snyk and other solutions. Updated: March 2024.
    765,234 professionals have used our research since 2012.

    CAST Application Intelligence Platform is ranked 3rd in Software Development Analytics with 3 reviews while Coverity is ranked 4th in Application Security Testing (AST) with 33 reviews. CAST Application Intelligence Platform is rated 7.0, while Coverity is rated 7.8. The top reviewer of CAST Application Intelligence Platform writes "Has a security dashboard that's helpful because it gives compliance checks based on some of the leading frameworks in the industry". On the other hand, the top reviewer of Coverity writes "Best SAST tool to check software quality issues". CAST Application Intelligence Platform is most compared with SonarQube, Fortify Application Defender, Fortify on Demand, Checkmarx and BlueOptima, whereas Coverity is most compared with SonarQube, Klocwork, Fortify on Demand, Checkmarx and Veracode.

    We monitor all Software Development Analytics reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.