TechValidate Research on Klocwork

TechValidate Customer Research Library / Perforce Software / Klocwork / Case Studies /

Klocwork Case Study

Federal Government Agency

Introduction

This case study of a federal government is based on a March 2021 survey of Klocwork customers by TechValidate, a 3rd-party research service. The profiled organization asked to have their name blinded to protect their confidentiality.

Share

Embed

Download

“We have been using the Klocwork tool for the last 10 years and have found it to be a very useful tool as a static code analysis tool.

“Working with certified tools increases trust in the tool execution results.”

Challenges

Tools evaluated or used prior to selecting Perforce SAST Tools:

  • Parasoft

Use Case

Agreed that for static code analysis tools, key features include:

  • The ease of setting up and running static code analysis
  • Integration into CI/CD systems
  • Differential analysis for speed and efficiency
  • The ability to support huge codebases
  • Support for all coding languages that we use
  • No need to pre-process code prior to scanning

Importance of the following:

  • Have a consistent pricing model from your Static Application Security Testing (SAST) tool vendor: very Important
  • Have a SAST tool that can be executed via flexible deployment options (Desktop/IDE/CI/Cloud/Containers): important
  • Have customizable quality reports and analysis: important
  • Get accurate and clean of noise reports: important

Said that audit and/or stakeholder-ready scan results help to speed up release cycles and time to market faster.

They are not comfortable with sharing and uploading their source code to an SAST tool vendor cloud.

Security and safety coding standards coverage most important for them:

  • CERT
  • JSF AV C++

Enterprise console and reporting framework capabilities they value the most:

  • Control access permissions and approval workflows
  • Prioritize defects based on severity, location, and lifecycle

Results

Features of Klocwork compared to other tools that used or evaluated:

  • Ability to scale to projects of any size: superior
  • Wide range of developer tools: better
  • Continuous compliance: superior
  • Ease of automation: superior
  • Differential analysis: superior
  • Flexible deployment options: superior

Organization Profile

The organization featured in this case study asked to have its name publicly blinded because publicly endorsing vendors is against their policies.

TechValidate stands behind the authenticity of this data.

Organization Size:
Federal

Industry:
Government

About Klocwork

We believe in the power of teamwork. And that our development tools should empower the diverse teams that use them by enhancing collaboration, control, quality, speed, scale, and freedom.

Learn More:

Perforce Software

Source: TechValidate survey of a Federal Government
Validated
  Published: May. 12, 2021   TVID: 498-333-D23




About This Data

This data was sourced directly from verified users of Klocwork by TechValidate.

TechValidate verifies the identity and organizational affiliation of all participants that contribute to published research data. When research participants so desire, we also guarantee their anonymity so that they may share information honestly and freely.


More Research on Klocwork



© Copyright 2024 SurveyMonkey. All marks used on this site are the property of their respective owners. Privacy Policy Terms of Use