When faced with 1,000s of issues, where do you start? With Coverity Connect, we help you answer three important questions:
- Which issues are the most critical?
- Which do I fix first (or at all)?
- Which other projects and products are impacted by this issue?
For every issue discovered, Coverity Connect provides a clear explanation of the issue, its severity based on business impact and its precise location in the code. Developers now have actionable information to make better fix/no fix decisions based upon business impact.
Issue Prioritization and Filtering
Issues are categorized and prioritized together based upon criticality and impact. We provide classifications out of the box based on our extensive analysis of real-world codebases, along with industry classification data. In addition, you can customize your own categories and classifications based on your specific business requirements. Developers can also quickly see the issues relevant to them through flexible filtering capabilities.
Coverity Connect pinpoints the exact location of the issue and displays the actual code so you can quickly understand the defect or violation in context and remediate it appropriately. You can also view the number of occurrences of a single issue common across projects, code branches and versions to understand its global impact.
Source Code Navigation
The intuitive, fully cross-referenced code browser helps you easily navigate the code within and surrounding the issue. By browsing the source code using the original file and directory structure, you can identify the issue, as well as issues in nearby areas of code to identify issue clusters or trends.
Inline Expansion of Function Calls
Expand function calls inline to understand the execution path for deeply nested events and get a comprehensive explanation of the defect, an impossible task to perform during a manual code review.
Common Weakness Enumeration (CWE) Mapping *CWE Compatible*
Every software defect is mapped to the CWE specification, a community-developed defect dictionary, giving developers a better understanding of defect severity and security impact. This provides one-click access to a rich knowledge base, taking the guesswork out researching unfamiliar defects.
Global Defect Management
Coverity Connect automatically identifies every occurrence of a defect across branches, flagging the presence of a single defect in other projects and products that share code. A single defect that exists in multiple locations in the code is reported once, increasing remediation efficiency.
Automated Issue Assignment
Automatically assign issues to the appropriate developer as part of the standard development workflow and track to resolution within set SLA time frames to enforce accountability.
Automated Issue Alert
Automatically alert developers when new issues impact their project, regardless of who introduced the issue.
Automated Issue History
Create an escalation process in the event further expertise is required to remediate the issue and maintain an audit trail of issue activity for future reference.
Multiple Tools. One Process.
We know you probably use multiple analysis tools – no one tool can find every type of defect. That’s why our platform is open, so you can import third party analysis results into our workflow to view and manage all types of defects in the same way. Your developers are more productive by not having to deal with multiple tools and workflows. And you get a single view of software risks.
Coverity Analysis Pack and Third Party Analysis Tool Integration
Import issues detected by Coverity Dynamic Analysis, Coverity Architecture Analysis, FindBugs, FxCop, NT Objectives, BlackDuck, PRQA, EZ Source or other third party code analysis tools to manage issues within a unified workflow.
Software Development Lifecycle Integration
Coverity Connect integrates seamlessly with the critical tools and systems used to support the development process, such as source control management, build and continuous integration, bug tracking, integrated development environments (IDEs) and application lifecycle management (ALM) solutions.
Check out our SDLC integrations