AlternativeTo Logo

Free Coverity Scan Alternatives

The best free alternative to Coverity Scan is SonarQube, which is also Open Source. If that doesn't suit you, our users have ranked more than 10 alternatives to Coverity Scan and 11 is free so hopefully you can find a suitable replacement. Other interesting free alternatives to Coverity Scan are Cppcheck, Shellcheck, Flawfinder and Clang Static Analyzer.

This page was last updated Jun 21, 2022
  • FreemiumProprietary
  • Mac
  • Windows
  • Linux
  • Online
  • BSD

Coverity Scan Static Analysis allows to find and fix defects in your Java, C/C++ or C# open source project for free.

Learn more about Coverity Scan

  1. SonarQube icon

    SonarQube

    • FreemiumOpen Source
    • Mac
    • Windows
    • Linux
    • Online

    SonarQube is an open source quality management platform, dedicated to continuously analyze and measure source code quality, from the portfolio to the method. Static code analysis is available in the "Community Edition" (free / open source) for:

    Screenshot
  2. Cppcheck icon

    Cppcheck

    • FreeOpen Source
    • Windows
    • Linux
    • PortableApps.com
    • Eclipse

    Cppcheck is an static analysis tool for C/C++ code. Unlike C/C++ compilers and many other analysis tools it does not detect syntax errors in the code. Cppcheck primarily detects the types of bugs that the compilers normally do not detect.

    No screenshots yet


  3. Shellcheck icon

    Shellcheck

    • FreeOpen Source
    • Online
    • GNU Emacs
    • Vim
    • Sublime Text
    • Atom
    • Code - OSS (vscode)
    • Visual Studio Code

    A simple tool for finding bugs in shell scripts.

    Screenshot
  4. Flawfinder

    • FreeOpen Source
    • Windows
    • Linux

    Flawfinder examines source code and reports possible security weaknesses (``flaws'') sorted by risk level. It's very useful for quickly finding and removing at least some potential security problems before a program is widely released to the public.

    No screenshots yet
  5. Clang Static Analyzer

    • FreeOpen Source
    • Mac
    • Xcode

    The Clang Static Analyzer is a source code analysis tool that finds bugs in C, C++, and Objective-C programs.

    Screenshot


  6. lgtm.com icon

    lgtm.com

    • FreeProprietary
    • Online

    lgtm.com is a platform for code analytics. It's free to use for open source software; results for over 55k projects are readily available (add your own!), has automatic code review pull request integration (GitHub, Bitbucket, GitLab), and much more.

    No screenshots yet
  7. Splint

    • FreeOpen Source
    • Windows
    • Linux

    Splint is a tool for statically checking C programs for security vulnerabilities and coding mistakes. With minimal effort, Splint can be used as a better lint.

    Discontinued

    Last version 3.1.2 is from August 2007.

    No screenshots yet
  8. Infer icon

    Infer

    • FreeOpen Source
    • Linux

    Facebook Infer is a static analysis tool - if you give Infer some Objective-C, Java, or C code, it produces a list of potential bugs.

    No screenshots yet
  9. EDoC++

    • FreeOpen Source
    • Windows

    EDoC++ is a C++ source analysis tool designed to identify problems associated with the use of exceptions in C++ code. Additionally EDoC++ can be used to generate detailed documentation

    No screenshots yet
  10. Semgrep icon

    Semgrep

    • FreemiumOpen Source
    • Mac
    • Windows
    • Linux

    Semgrep is a fast, open-source, static analysis tool that excels at expressing code standards — without complicated queries — and surfacing bugs early at editor, commit, and CI time.

    No screenshots yet
Showing 10 of 11 alternatives