We performed a comparison between Coverity and Parasoft SOAtest based on real PeerSpot user reviews.
Find out what your peers are saying about Sonar, Veracode, GitLab and others in Application Security Testing (AST)."One of the most valuable features is Contributing Events. That particular feature helps the developer understand the root cause of a defect. So you can locate the starting point of the defect and figure out exactly how it is being exploited."
"I encountered a bug with Coverity, and I opened a ticket. Support provided me with a workaround. So it's working at the moment, or at least it seems to be."
"The most valuable feature of Coverity is the wrapper. We use the wrapper to build the C++ component, then we use the other code analysis to analyze the code to the build object, and then send back the result to the SonarQube server. Additionally, it is a powerful capabilities solution."
"The app analysis is the most valuable feature as I know other solutions don't have that."
"Coverity is scalable."
"We were very comfortable with the initial setup."
"The ability to scan code gives us details of existing and potential vulnerabilities. What really matters for us is to ensure that we are able to catch vulnerabilities ahead of time."
"Good write and read files which save execution inputs and outputs and can be stored locally."
"Right now, the Coverity executable is around 1.2GB to download. If they can reduce it to approximately 600 or 700MB, that would be great. If they decrease the executable, it will be much easier to work in an environment like Docker."
"When I put my code into Coverity for scanning, the code information of the product is in the system. The solution could be improved by providing a SBOM, a software bill of material."
"Coverity is not stable."
"We'd like it to be faster."
"Coverity is far from perfection, and I'm not 100 percent sure it's helping me find what I need to find in my role. We need exactly what we are looking for, i.e. security errors and vulnerabilities. It doesn't seem to be reporting while we are changing our code."
"Coverity could improve the ease of use. Sometimes things become difficult and you need to follow the guides from the website but the guides could be better."
"The solution could use more rules."
"From an automation point of view, it should have better clarity and be more user friendly."
Coverity is ranked 9th in Application Security Testing (AST) with 7 reviews while Parasoft SOAtest is ranked 22nd in Application Security Testing (AST) with 1 review. Coverity is rated 7.8, while Parasoft SOAtest is rated 7.0. The top reviewer of Coverity writes "Broad integration capacity and works with more languages than some competitors". On the other hand, the top reviewer of Parasoft SOAtest writes "Good API testing and RIT feature; clarity could be improved". Coverity is most compared with SonarQube, Veracode, Checkmarx, Klocwork and Sonatype Nexus Lifecycle, whereas Parasoft SOAtest is most compared with Postman, SonarQube, ReadyAPI Test, Tricentis Tosca and Klocwork.
See our list of best Application Security Testing (AST) vendors.
We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
