Coverity® by Synopsys is a static analysis (SAST) solution that helps development and security teams address security and quality defects early in the software development life cycle (SDLC), track and manage risks across the application portfolio, and ensure compliance with security and coding standards.
Coverity identifies critical software quality defects and security vulnerabilities in code as it’s written, early in the development process, when it’s least costly and easiest to fix. With the Code Sight™ integrated development environment (IDE) plugin, developers
get accurate analysis in seconds in their IDE as they code. Precise actionable remediation advice and context-specific eLearning help developers understand how to fix their prioritized issues quickly, without having to become security experts.
Coverity integrates automated security testing into the CI/CD pipelines and supports existing development tools and workflows. Users can choose where and how to do development: on-premises or in the cloud with the Polaris Software Integrity Platform™ (SaaS), a cloud-based application security platform. Coverity supports 22 languages and over 70 frameworks and templates.