Jump to content

Coverity Quality Advisor

Coverity® Quality Advisor surfaces quality defects in the developer workflow, with accuracy and actionable remediation guidance.

  • Arm your developers with the information they need to troubleshoot and fix the quality defects that matter, quickly and efficiently, before the code even makes its way to QA.
  • Build quality into development to reduce re-work costs and delayed time to market resulting from defects found late in the cycle.
  • Reduce the risk of costly and brand-damaging quality issues and software failures in the field or in production.

Intelligent
Code Analysis

Quality Advisor helps reduce risk and lower overall project cost by identifying critical quality defects during development. Quality Advisor utilizes the Coverity® Static Analysis Verification Engine (Coverity SAVE®) to intelligently test code with a deep understanding of behavior and criticality to accurately identify hard to spot yet potentially crash causing quality defects in C/C++, Java and C# codebases.

Quality Advisor surfaces multiple types of defects including:

  • API usage errors
  • Best practice coding errors
  • Build system issues
  • Class hierarchy inconsistencies
  • Code maintainability issues
  • Concurrent data access violations
  • Control flow issues
  • Deadlocks
  • Error handling issues
  • Incorrect expression
  • Insecure data handling
  • Integer handling issues
  • Memory - corruptions
  • Memory - illegal accesses
  • Null pointer dereferences
  • Performance inefficiencies
  • Program hangs
  • Race conditions
  • Resource leaks
  • Rule violations
  • Security best practices violations
  • Security defects/buffer overflows and overruns
  • Uninitialized members

Efficient Issue
Management

Coverity® Connect is the collaborative issue management console to efficiently manage all issues surfaced by Quality Advisor, Security Advisor and Test Advisor to resolution within a unified workflow.

This includes:

  • Prioritization and filtering based on criticality and impact.
  • Source code navigation to identify the exact path to the defect.
  • Automatic identification of every occurrence of a defect across branches.
  • CWE Compatible mapping and knowledge base for each defect.
  • Automatic assignment of defects to the appropriate developer.

To learn more, visit Coverity Connect.

Quality
Analysis Packs

In addition to defects surfaced through Quality Advisor, you can seamlessly integrate additional analysis results to efficiently manage multiple types of issues to resolution within a unified development testing workflow.

Coverity offers the following analysis packs:

Coverity® Dynamic Analysis for Quality Advisor: Identify concurrency issues such as race conditions, deadlocks and resource leaks by analyzing Java programs as they run. View and manage both static and dynamically identified quality defects in a single workflow.

Coverity® Architecture Analysis for Quality Advisor: Visualize the code structure to identify dependency conflicts and interface violations, detect architectural flaws that could create exposure, manage code complexity and enforce architectural design rules.

Analysis Integration: Manage FindBugs™ and FxCop defects in the same workflow as Coverity-found defects providing your developers with a single location to surface and remediate defects.

Coverity® Analysis Integration Toolkit: Analysis engines commonly look for different types of quality issues and therefore many organizations find it valuable to implement multiple tools, but managing them in silos is not scalable or cost effective. With the Coverity® Analysis Integration Toolkit you can integrate third party analysis results into the platform to manage defects within a single workflow.

SDLC
Integrations

Quality Advisor provides bi-directional integration with existing lifecycle tools to make development testing a natural part of the SDLC process.

Coverity supports integrations with the critical tools and systems used to support the development process, including:

  • IDEs to surface and remediate defects before code check in, right at the desktop.
  • Source control management to map defects to code changes and responsible developers.
  • Bug tracking to link defects to your overall defect management process.
  • Build and continuous integration to automatically test for defects with every build or as part of an Agile process.
  • IBM Rational Team Concert surfaces Quality Advisor defects within a unified workflow for increased traceability and collaboration.
  • HP Application Lifecycle Management (ALM) to surface Quality Advisor issues within the HP ALM workflow for increased traceability and collaboration with QA.

Check out our full list of SDLC integrations.

Get
Started

Contact Sales

Contact Sales

To learn more about the Coverity Development Testing Platform, please contact us directly.

U.S. Toll Free: (800) 873-8193

International Sales: +1 (415) 321-5237

CONTACT SALES

Ask a Question

Ask a Question

Network, collaborate, and share with a community of experts.

VISIT THE FORUMS

Request a Free Trial

Request a Free Trial

The trial process provides a similar experience to a real-world deployment, without disrupting your current processes or production environment.

REQUEST A FREE TRIAL

Schedule a Demo

Schedule a Demo

Register for a 30-minute demo. Talk to our development testing experts. See how we can help your organization.

REQUEST A DEMO

Get Started Resources

WHITE PAPER

Forrester Consulting – Development Testing: A New Era in Software Quality

READ NOW

COVERITY WEBINAR SERIES

Critical Elements of a Successful Implementation Featuring Raytheon

WATCH NOW

WHITE PAPER

Improving Scientific Research: CERN and Coverity

WATCH NOW

WHITE PAPER

The Proven ROI of Development Testing: An in-depth analysis of Coverity customer experiences

READ NOW