Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Vulnerabilities

Coverity Updates Software Testing Platform

Coverity, a provider of software quality, testing, and security tools, has released the latest version of its integrated suite of testing solutions that enables organizations to find and fix critical quality and security issues earlier in the software development lifecycle (SDLC).

Coverity, a provider of software quality, testing, and security tools, has released the latest version of its integrated suite of testing solutions that enables organizations to find and fix critical quality and security issues earlier in the software development lifecycle (SDLC).

With version 7.5 of the Coverity Software Testing Platform, the company said that it has expanded the collaboration capabilities between Development and Quality Assurance (QA) teams, which will result in reduced software development costs and higher end-product quality.

Coverity The new platform release also includes several new analysis algorithms to improve Coverity’s support for C# and Java codebases.

New features in the Coverity platform include:

Test prioritization and execution: The new Coverity Test Advisor – QA Edition, which is based on technology acquired from Kalistick, enables QA teams to monitor the execution and results of their tests, then identify which tests are most critical based on changes to the source code and testing gaps. This enables faster time to market while ensuring the most relevant tests are executed and testing gaps are addressed.

Breadth and depth of C# and Java code analysis: This release includes 12 new and enhanced analysis algorithms for finding C# and Java issues. These algorithms further improve the accuracy of the platform’s defect detection capabilities, providing developers with the information they need to quickly troubleshoot and fix critical defects such as concurrency issues, which are difficult to detect and result in performance issues and incorrect behavior of the application.

Expanded Java web application security coverage: With the addition of several new security analysis algorithms – including a Cross-Site Request Forgery (CSRF) checker and a Risky Crypto checker – the Coverity platform now offers extensive coverage for the Open Web Application Security Project (OWASP) Top 10 and Common Weakness Enumeration (CWE) security vulnerabilities for Java applications.

Improved integration with the developer workflow: The Coverity platform’s desktop analysis capability enables developers to resolve issues almost immediately from within their IDE. Defects can be automatically assigned for remediation to the developer who modified the relevant lines of code, which helps accelerate issue resolution and improves overall productivity.

“With this new release of the Coverity platform, we have introduced a new approach to software testing: providing QA teams with insight into what testing has been done in Development, and offering Development teams the opportunity to provide input into QA testing processes,” said John Chilton, senior vice president and general manager for Coverity.

Coverity was recently acquired by Synopsys in a deal valued at roughly $375 million. 

Written By

Click to comment

Expert Insights

Related Content

Mobile & Wireless

Technical details published for an Arm Mali GPU flaw leading to arbitrary kernel code execution and root on Pixel 6.

Mobile & Wireless

Apple rolled out iOS 16.3 and macOS Ventura 13.2 to cover serious security vulnerabilities.

Cloud Security

VMware vRealize Log Insight vulnerability allows an unauthenticated attacker to take full control of a target system.

Mobile & Wireless

Apple’s iOS 12.5.7 update patches CVE-2022-42856, an actively exploited vulnerability, in old iPhones and iPads.

Vulnerabilities

Security researchers have observed an uptick in attacks targeting CVE-2021-35394, an RCE vulnerability in Realtek Jungle SDK.

Mobile & Wireless

Two vulnerabilities in Samsung’s Galaxy Store that could be exploited to install applications or execute JavaScript code by launching a web page.

Vulnerabilities

Several vulnerabilities have been patched in OpenText’s enterprise content management (ECM) product.

Vulnerabilities

Google has awarded more than $25,000 to the researchers who reported the vulnerabilities patched with the release of the latest Chrome update.