Klocwork 2024

Klocwork static application security testing (SAST) for C, C++, C#, Java, JavaScript, Kotlin, and Python identifies software security, quality, and reliability issues helping to enforce compliance with standards.

Built for enterprise DevOps, Klocwork scales to projects of any size, integrates with large complex environments and a wide range of developer tools, and provides control, collaboration, and reporting. Our Differential Analysis engine provides rapid results, while maintaining accuracy, and integrates seamlessly with CI/CD pipelines to automate continuous compliance — safeguarding your software from vulnerabilities with every commit.

Online Help What's New Release Notes

Set up your environment

Let us walk you through the process of getting Klocwork up and running, so you can start creating more secure and reliable software. From installing for the first time to upgrading to the latest release, all scenarios are covered in this section.

Installation Quick Start

Learn how you can configure your build configuration and existing projects to integrate with the Klocwork toolchain. Find out how to tune your analysis and set up your integration for better results.

Build configuration Project configuration

Learn about how to configure and customize how Klocwork analysis is run on your project. Learn how to get started with Desktop analysis with support for Visual Studio, Eclipse, IntelliJ IDEA and other methods.

Performing Klocwork analysis Desktop analysis

Discover how Klocwork Static Code Analysis can help you manage your team through project and user management, custom reports and drilling down into the issues that matter. Learn how to improve overall team productivity.

Measure and manage your projects

Klocwork Checkers scour your source code for defects and potential vulnerabilities. At the most basic level, checkers provide the logic that drives the Klocwork analysis.

C/C++ checkers C# checkers Java checkers JavaScript checkers Kotlin checkers Python checkers