Klocwork Reviews

Name: Klocwork
Brand: Perforce
Rating: 4.0 (23 reviews)

4.0 out of 5

23 reviews
92% willing to recommend

463 followers

What is Klocwork?

Klocwork detects security, safety, and reliability issues in real-time by using this static code analysis toolkit that works alongside developers, finding issues as early as possible, and integrates with teams, supporting continuous integration and actionable reporting.

Get the Klocwork Buyer's Guide and find out what your peers are saying about Klocwork, SonarQube Server (formerly SonarQube), GitLab and more!

Klocwork is the #5 ranked solution in top Static Code Analysis solutions, #13 ranked solution in AST tools, and #16 ranked solution in application security solutions. PeerSpot users give Klocwork an average rating of 8.0 out of 10. Klocwork is most commonly compared to SonarQube Server (formerly SonarQube): Klocwork vs SonarQube Server (formerly SonarQube). Klocwork is popular among the large enterprise segment, accounting for 51% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a educational organization, accounting for 32% of all views.

Helped 849,686 peers since 2012

Featured Klocwork reviews

AnirbanSarkar

Head - Solution Management Group at Meteonic Innovation Pvt. Ltd.

What needs improvement in Klocwork, compared to other products in the market, is the dashboard or reporting mechanisms that need to be a bit more flexible. The Klocwork dashboard could be improved. Though it's good, it's not as good as some of the other products in the market, which is a problem. The reporting could be more detailed and easier to sort out because sorting in Klocwork could be a bit more time-consuming, mainly when sorting defects based on filters, compared to how it's done on other tools such as Coverity. What I'd like added in the next release of Klocwork is the peer code review Cahoots which used to be a part of Klocwork, and the architecture analysis and both have been taken out of Klocwork. I found the two critical for specific deployments, so if those can be brought back to Klocwork, that would be very good.

Read full review

Pranay Mishra

Director - Quality Excellence at a manufacturing company with 501-1,000 employees

I utilize Klocwork for identifying defects and early vulnerabilities in the code, conducting code checks, and categorizing and fixing failures The most valuable feature of Klocwork is its reduced setup time. It takes around half a day to set up, making it easier to debug and categorize failures.…

Read full review

Bob Dean

Principle Engineer at MTSI

It is not a panacea, because there is no tool that is a panacea. We bought Klocwork, but it was limited to one little program, but the program is now sort of failing. So, we have a license for usage on a program that is sort of failing, and we really can't use the license on anything else. It is a terrrible shame. Klocwork is still tight on their licensing. If Klocwork would loosen up on the licensing, and where the license could be used, and how many different programs could be run on it, then we have several development programs that I would love to be able to use it for going forward. I would like to have a tool developed by a vendor that picks out all of the NSA Juliet Test Suite cases, then is generous with the licensing. It might be expensive, but it is generous. Klocwork does have a problem with true positives. It only found 30% of true positives in the Juliet test case.

Read full review

Klocwork mindshare

Product category:

As of May 2025, the mindshare of Klocwork in the Application Security Tools category stands at 1.4%, down from 1.5% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Application Security Tools

PeerResearch reports based on Klocwork reviews

Type	Title	Date
Category	Application Security Tools	Apr 30, 2025	Download
Product	Reviews, tips, and advice from real users	Apr 30, 2025	Download
Comparison	Klocwork vs SonarQube Server (formerly SonarQube)	Apr 30, 2025	Download
Comparison	Klocwork vs Veracode	Apr 30, 2025	Download
Comparison	Klocwork vs Checkmarx One	Apr 30, 2025	Download

Title	Rating	Mindshare	Recommending
SonarQube Server (formerly SonarQube)	4.0	24.5%	81%	114 interviews Add to research
GitLab	4.3	2.9%	97%	82 interviews Add to research

Valuable Features

Klocwork excels in static code analysis with minimal false positives and rapid setup. Users appreciate its custom checker creation, on-the-fly analysis, and integration with various IDEs and CI systems. The incremental analysis and extensive language support enhance development efficiency. Teams value the collaboration fostered by the server-client build and the insightful reporting. Klocwork's capability to identify security threats and errors early in development ensures high-quality, safe code.

"The customer support team is very responsive, proactive, and engages in conversations to ensure our needs are met."
"The best advantage of Klocwork is the reduced setup time."
"The most valuable feature of Klocwork is its reduced setup time."

Room for Improvement

Klocwork needs to improve global variable tracking and reduce false positives. Enhancements in language support and licensing flexibility are required. The user interface, particularly the dashboard, should be more intuitive and integrated with DevOps tools. Reducing analysis time and including automated rule definitions would boost efficiency. Addressing false alarms and offering dynamic analysis capabilities can enhance usefulness. More comprehensive language support, including modern languages, is desired, along with smoother updates and server integration.

"Even though it does the job, there's room for feature enhancements, such as integrations with Git for better tracking and notifications."
"There are too many warnings, and it requires expertise to determine the correct category for them."
"Klocwork sometimes provides too many additional warnings which require expertise to manage."

Pricing

Klocwork's pricing and licensing are seen as competitive and flexible, offering options for both fixed and floating servers. Some users find the initial setup costly but acknowledge its value. Licensing fees can be annual or perpetual, with costs varying based on deployment and license type. While some find Klocwork expensive compared to newer tools like Microsoft Visual Studio, SMBs consider it affordable. The solution is typically cheaper than alternatives like Coverity.

"The pricing for Klocwork is very competitive if you compare it from apple to apple. It has competitive pricing regarding the licensing model and the per-license cost. Klocwork isn't a high-end investment for anyone deploying it; even SMBs can afford it.The Klocwork cost per user would depend on the license type, so I'm unable to mention a ballpark figure because it would depend on the type of installation and how the deployment will be, and the nodes to give an accurate calculation or figure. The total price depends on the package, so my company could never publish pricing for Klocwork on the website.My team first collects information from potential clients on the deployment scenario, project environment, etc., before suggesting a package for Klocwork.My rating for Klocwork in terms of pricing is a five because of its flexible license models. There's a license model for every type of organization, whether small, midsize, or enterprise, so it's a five out of five for me."
"This solution offers competitive pricing."
"There are other solutions on the market such as Microsoft Visual Studio. They have been adding more static code analysis features that come for free. It is getting better all the time. That is one of the possibilities is that we've been considering that we may stop using the Klocwork because it doesn't give us any added value."

Popular Use Cases

Organizations use Klocwork primarily for static code analysis, detecting vulnerabilities such as buffer overflows, null pointer issues, and concurrency violations. It helps enforce internal standards by automating manual checks and improving code quality. Klocwork supports C and C++ projects, aligns with industry-specific standards, and integrates into DevOps processes for continuous improvement. Organizations value its capability to identify security vulnerabilities and maintain code quality across various domains like automotive, aerospace, and defense.

Service and Support

Klocwork provides responsive customer service with quick response times, including support via email and phone. The technical support is generally rated as very good, addressing issues efficiently and being available across numerous countries. Most users experience prompt resolution of concerns and report satisfaction with follow-ups. Some users find the documentation sufficient, reducing the need for direct contact. Initial phases may require multiple interactions, but overall, Klocwork's presence and accessibility are favorable to users worldwide.

Deployment

Users find Klocwork's initial setup easy and uncomplicated, with some noting the process takes a couple of days or even less than a day. The setup is consistent across versions, but some users encounter a persistent issue where it installs as a service despite requests otherwise. Klocwork integrates smoothly with existing automation, requiring minimal maintenance. Certain situations involve additional steps for external rule set integration, yet users generally describe the setup as straightforward and manageable.

Scalability

Klocwork is considered scalable, meeting diverse organizational needs, from small teams to extensive global corporations. It effectively manages project demands, accommodating up to thousands of users with ease. Although scalability testing wasn't comprehensive for all users, it still showcased robust capabilities compared to other tools. Some organizations integrate additional security tools for enhanced performance. Klocwork licenses are highly adaptable, supporting various team sizes and configurations while efficiently handling increased workloads.

Stability

Klocwork is frequently highlighted for its stability, efficiently handling large codebases without issues. Some mention that the update process is lengthy, and stability may be affected by insufficient memory or network changes. While a few instance-specific issues were noted, especially with GUIs and external applications, Klocwork remains stable when properly supported with adequate computing resources. Organizations using Klocwork for many years appreciate its reliability, noting that it performs well across varied infrastructure setups.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Klocwork Buyer's Guide for additional reliable information.

Review data by company size

By reviewers

By visitors reading reviews

Top industries

By visitors reading reviews

Educational Organization

32%

Manufacturing Company

21%

Computer Software Company

Financial Services Firm

Aerospace/Defense Firm

Comms Service Provider

Transportation Company

Healthcare Company

University

Government

Energy/Utilities Company

Retailer

Engineering Company

Construction Company

Hospitality Company

Insurance Company

Recreational Facilities/Services Company

Real Estate/Law Firm

Wholesaler/Distributor

Media Company

Non Profit

Consumer Goods Company

Outsourcing Company

Logistics Company

Compare Klocwork with alternative products

Learn more about Klocwork

Klocwork customers

ACCESS Co Ltd, Risk-AI, Winbond Electronics, Bristol-Myers Squibb Pharmaceutical Research Institute, University of Southern California, Alebra Technologies, SIMULIA, Risk Management Solutions, Brigham Young University, SRD, HRL