Coverity Scan | Static Analysis

Find and fix defects in your C/C++ or Java open source project for free.

Sign up for free »

More than 300 open source projects use Coverity Scan

The reports from Coverity are a valuable contribution to – among others – the LibreOffice development process.

-LibreOffice

For more than 2100 issues reported, every issue was inspected, and now all reported issues are resolved.

-BRL-CAD project leader

Coverity's static source code analysis has proven to be an effective step towards furthering the quality and security of Linux

-Andrew Morton, Lead Kernel Maintainer

Coverity is a code-analysis tool – an extremely good one, probably at this moment the best in the world.

-GPSd

Several other Coverity issues have been resolved and their fixes have made their way into release candidate 7. I’ve no doubt that Coverity is adding value to our project.

-POV-Ray

Coverity performs very deep analysis and its results may well surprise you...but rather that than unexpected surprises for your users.

-Upstart and Whoopsie

Vulnerability Notifications– We recommend all administrators upgrade immediately. The vulnerability was created in commit. Coverity scan discovered it.

-FreeRADIUS

Ah, that’s cool. Pretty neat that an automated tool can catch mutex lock problems in conditional statements wrapped in macros! I’m impressed.

-Genivi

Coverity points out that we do not free in one case and sure enough we forgot.

-Linux

You have a very good product and provide a great service to the open source community (certainly to the Linux kernel community).

-Linux

Thank you guys for making such an awesome tool accessible to the open source community!

-Java Developer

Sign up for free »

Register your C/C++ or Java Open Source Project Today

Coverity Scan tests every line of code and potential execution path

The root cause of each defect is clearly explained, making it easy to fix bugs

Scan-example


2012 Coverity Scan open source report

Download the 2012 Scan report and benchmark your defect density against the world's top open source projects

Coverity Scan in bug-fixing action

Learn how BRL-CAD, an open source project with 840 KLOC, used Coverity Scan to fix 1,654 bugs in a 5 day bug fixing marathon

Get started with Coverity Scan

Learn about the types of defects we find, how to fix defects quickly, and how Scan can fit into your development workflow


Coverity Scan™ was initiated with the U.S. Department of Homeland Security in 2006 to help improve open source software quality and security. Coverity now manages the project as a free service to the open source community.