Coverity Connect

Connect Screenshot

Coverity® Connect gives you everything you need to triage findings, persist classifications and collaborate effectively with other developers. So you can divide the effort of improving your software and conquer your quality and security goals collectively. Coverity Connect provides a defect knowledge base so you can fix defects quickly and share information with other developers working on shared code.

Connect issues: Manage issues identified by the Coverity platform and third party tools from within a single workflow and knowledge base for a more comprehensive view of risk.

Connect developers: Share information and collaborate across geographically distributed teams with an enterprise platform.

Connect to your workflow: Manage issues efficiently to resolution within your SDLC process, from assignment of work items to tracking issues to closure.

Free Trial View the Demo

Issue Management

When faced with 1,000s of issues, where do you start? With Coverity Connect, we help you answer three important questions:

  1. Which issues are the most critical?
  2. Which do I fix first (or at all)?
  3. Which other projects and products are impacted by this issue?

For every issue discovered, Coverity Connect provides a clear explanation of the issue, its severity based on business impact and its precise location in the code. Developers now have actionable information to make better fix/no fix decisions based upon business impact.

Issue Prioritization and Filtering

Issues are categorized and prioritized together based upon criticality and impact. We provide classifications out of the box based on our extensive analysis of real-world codebases, along with industry classification data. In addition, you can customize your own categories and classifications based on your specific business requirements. Developers can also quickly see the issues relevant to them through flexible filtering capabilities.

Issue Navigation

Coverity Connect pinpoints the exact location of the issue and displays the actual code so you can quickly understand the defect or violation in context and remediate it appropriately. You can also view the number of occurrences of a single issue common across projects, code branches and versions to understand its global impact.

Source Code Navigation

The intuitive, fully cross-referenced code browser helps you easily navigate the code within and surrounding the issue. By browsing the source code using the original file and directory structure, you can identify the issue, as well as issues in nearby areas of code to identify issue clusters or trends.

Inline Expansion of Function Calls

Expand function calls inline to understand the execution path for deeply nested events and get a comprehensive explanation of the defect, an impossible task to perform during a manual code review.

Common Weakness Enumeration (CWE) Mapping   *CWE Compatible*

Every software defect is mapped to the CWE specification, a community-developed defect dictionary, giving developers a better understanding of defect severity and security impact. This provides one-click access to a rich knowledge base, taking the guesswork out researching unfamiliar defects.

Global Defect Management

Coverity Connect automatically identifies every occurrence of a defect across branches, flagging the presence of a single defect in other projects and products that share code. A single defect that exists in multiple locations in the code is reported once, increasing remediation efficiency.


Automated Issue Assignment

Automatically assign issues to the appropriate developer as part of the standard development workflow and track to resolution within set SLA time frames to enforce accountability.

Automated Issue Alert

Automatically alert developers when new issues impact their project, regardless of who introduced the issue.

Automated Issue History

Create an escalation process in the event further expertise is required to remediate the issue and maintain an audit trail of issue activity for future reference.

SDLC and
Data Integration

Multiple Tools. One Process.

We know you probably use multiple analysis tools – no one tool can find every type of defect. That’s why our platform is open, so you can import third party analysis results into our workflow to view and manage all types of defects in the same way. Your developers are more productive by not having to deal with multiple tools and workflows. And you get a single view of software risks.

Coverity Analysis Pack and Third Party Analysis Tool Integration

Import issues detected by Coverity Dynamic Analysis, Coverity Architecture Analysis, FindBugs, FxCop, NT Objectives, BlackDuck, PRQA, EZ Source or other third party code analysis tools to manage issues within a unified workflow.

Software Development Lifecycle Integration

Coverity Connect integrates seamlessly with the critical tools and systems used to support the development process, such as source control management, build and continuous integration, bug tracking, integrated development environments (IDEs) and application lifecycle management (ALM) solutions.

Check out our SDLC integrations