What is Coverity Certified?

Coverity offers two types of certifications, each with varying levels depending upon the level of rigor involved. They are described below:

Quality Code

 Coverity Certified Quality Code
Level 1 Coverity Certified Level 1 Quality Code Core product source code is analyzed and all Coverity-reported defects are fixed
  • 100% of all core source code analyzed
  • All reported bugs categorized and fixed
  • Regular, repeatable process for addressing new bugs in new code
Level 2 Coverity Certified Level 2 Quality Code Core product source code is analyzed with additional configuration for quality and concurrency. All Coverity-reported defects are fixed.
  • All level 1 requirements
  • Analysis configured for additional quality and concurrency checks
Level 3 Coverity Certified Level 3 Quality Code Entire product codebase including third-party libraries and open source components are analyzed and all reported defects are fixed.
  • Level 2 requirements
  • All code, including third-party and open source code in product analyzed and defects fixed

Secure Code

 Coverity Certified Secure Code
Level 1 Coverity Certified Level 1 Secure Code Core product source code is analyzed and all Coverity-reported defects are fixed
  • 100% of all core source code analyzed
  • All reported bugs categorized and fixed
  • Regular, repeatable process for addressing new bugs in new code
Level 2 Coverity Certified Level 2 Secure Code Core product source code is analyzed and all security vulnerabilities are fixed.
  • 100% of all core source code analyzed for potential security violations
  • All potential security violations categorized and fixed
  • Regular repeated process for addressing new vulnerabilities in new code
Level 3 Coverity Certified Level 3 Secure Code Entire product codebase including third-party libraries and open source components are analyzed and all reported security vulnerabilities are fixed.
  • Level 2 requirements
  • All code, including third-party and open source code in product analyzed and vulnerabilities reported fixed

Products that undergo certification must go through a rigorous audit process to ensure that all defects and security vulnerabilities are addressed. In addition, a structured process must be in place to ensure quality and security for future releases. For a more detailed list of requirements, please see our Coverity Certified datasheet or contact Coverity at info@coverity.com.

Free Product Trial

Get a free trial of Prevent static analysis that will detect a wide range of crash-causing defects in your code base within hours. Get a Free Product Trial
datasheet
Datasheet
Read the Coverity Certified Datasheet
“Ease of integration with Coverity Prevent was seamless and the usage is straightforward. We went from trial to purchase in three weeks.”
Windriver - static code analysis by Coverity Inc