Coverity Scan vs lgtm.com

Struggling to choose between Coverity Scan and lgtm.com? Both products offer unique advantages, making it a tough decision.

Coverity Scan is a Development solution with tags like static-analysis, defect-detection, security, open-source.

It boasts features such as Static analysis to find defects in C/C++ and Java code, Integrates with GitHub and Travis CI for easy scanning of open source projects, Provides detailed reports on issues found including code snippets and severity, Can scan code before check-in with a plugin for developers, Has high accuracy with low false positive rates and pros including Free for open source projects, Finds critical security vulnerabilities, Easy to set up and use, Detailed and actionable reports, High quality results.

On the other hand, lgtm.com is a Development product tagged with security, code-review, static-analysis.

Its standout features include Continuous code analysis, Automated code reviews, Integrates with GitHub, GitLab and Bitbucket, Runs code checks continuously, Detects bugs and vulnerabilities, and it shines with pros like Finds issues early, Improves code quality, Easy integration with source control, Automated and continuous, Detects security vulnerabilities.

To help you make an informed decision, we've compiled a comprehensive comparison of these two products, delving into their features, pros, cons, pricing, and more. Get ready to explore the nuances that set them apart and determine which one is the perfect fit for your requirements.

Coverity Scan

Coverity Scan

Coverity Scan is a free static analysis service for open source projects to detect critical software defects and security vulnerabilities. It is easy to use and provides high quality results.

Categories:
Development Code Analysis
static-analysis defect-detection security open-source

Coverity Scan Features

  1. Static analysis to find defects in C/C++ and Java code
  2. Integrates with GitHub and Travis CI for easy scanning of open source projects
  3. Provides detailed reports on issues found including code snippets and severity
  4. Can scan code before check-in with a plugin for developers
  5. Has high accuracy with low false positive rates

Pricing

  • Free
  • Open Source

Pros

Free for open source projects

Finds critical security vulnerabilities

Easy to set up and use

Detailed and actionable reports

High quality results

Cons

Only focused on defect detection

Limited language support (C/C++ and Java only)

Not available for private repositories

Requires uploading code to Coverity servers

lgtm.com

lgtm.com

LGTM.com is a continuous code analysis platform that helps developers detect bugs and vulnerabilities in source code with automated code reviews. It integrates directly with GitHub, GitLab, and Bitbucket, and runs code checks continuously in the background to find issues as new commits are added.

Categories:
Development Code Analysis
security code-review static-analysis

Lgtm.com Features

  1. Continuous code analysis
  2. Automated code reviews
  3. Integrates with GitHub, GitLab and Bitbucket
  4. Runs code checks continuously
  5. Detects bugs and vulnerabilities

Pricing

  • Freemium
  • Subscription-Based

Pros

Finds issues early

Improves code quality

Easy integration with source control

Automated and continuous

Detects security vulnerabilities

Cons

May generate false positives

Limited language support

Not open source

Requires learning new tools