We performed a comparison between Checkmarx One and ReShaper based on real PeerSpot user reviews.
Find out what your peers are saying about Veracode, Checkmarx, OpenText and others in Static Code Analysis."The administration in Checkmarx is very good."
"The most valuable feature for me is the Jenkins Plugin."
"The most valuable feature is the simple user interface."
"The setup is very easy. There is a lot of information in the documents which makes the install not difficult at all."
"The most valuable features are the easy to understand interface, and it 's very user-friendly."
"The report function is the solution's greatest asset."
"The ability to track the vulnerabilities inside the code (origin and destination of weak variables or functions)."
"The setup is fairly easy. We didn't struggle with the process at all."
"It comes with many features and supports almost all of the coding languages available."
"The most valuable feature of ReShaper is that it provides continuously scanning of the data in real-time. ReShaper has a really good mechanism and process, they have a decent system."
"Implementing a blackout time for any user or teams: Needs improvement."
"The solution sometimes reports a false auditable code or false positive."
"Checkmarx could improve the speed of the scans."
"Checkmarx is not good because it has too many false positive issues."
"We are trying to find out if there is a way to identify the run-time null values. I am analyzing different tools to check if there is any tool that supports run-time null value identification, but I don't think any of the tools in the market currently supports this feature. It would be helpful if Checkmarx can identify and throw an exception for a null value at the run time. It would make things a lot easier if there is a way for Checkmarx to identify nullable fields or hard-coded values in the code. The accessibility for customized Checkmarx rules is currently limited and should be improved. In addition, it would be great if Checkmarx can do static code and dynamic code validation. It does a lot of security-related scanning, and it should also do static code and dynamic code validation. Currently, for security-related validation, we are using Checkmarx, and for static code and dynamic code validation, we are using some other tools. We are spending money on different tools. We can pay a little extra money and use Checkmarx for everything."
"Checkmarx could improve by reducing the price."
"The integration could improve by including, for example, DevSecOps."
"The pricing can get a bit expensive, depending on the company's size."
"When it's integrated with a weak server machine, the performance isn't that great. It starts up slowly and even crashes at times."
"ReShaper could improve by increasing the performance of the scans. Their application is taking too much CPU. The processing is taking too many CPU resources which causes the system to slow down."
Checkmarx One is ranked 2nd in Static Code Analysis with 67 reviews while ReShaper is ranked 7th in Static Code Analysis. Checkmarx One is rated 7.6, while ReShaper is rated 8.6. The top reviewer of Checkmarx One writes "The report function is a great, configurable asset but sometimes yields false positives". On the other hand, the top reviewer of ReShaper writes "Detects, analyzes, and fixes any coding issues". Checkmarx One is most compared with SonarQube, Veracode, Fortify on Demand, Snyk and Coverity, whereas ReShaper is most compared with Whole Tomato Visual Assist and Fortify Static Code Analyzer.
See our list of best Static Code Analysis vendors.
We monitor all Static Code Analysis reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
