Software Alternatives, Accelerators & Startups
Register | Login
S

Shellcheck VS Checkmarx

Compare Shellcheck VS Checkmarx and see what are their differences

Unimus
Unimus is a Network Automation and Configuration management (NCM) solution designed for fast deployment network-wide and ease of use. Unimus does not require learning any abstraction or templating languages, and does not require any coding skills. featured
Contents:
  1. » Base Details
  2. » Videos
  3. » Reviews
  4. » Alternatives

Shellcheck logo Shellcheck

ShellCheck finds bugs in your shell scripts

Checkmarx logo Checkmarx

The industry’s most comprehensive AppSec platform, Checkmarx One is fast, accurate, and accelerates your business.
  • Shellcheck Landing page
    Landing page //
    2022-07-26
  • Checkmarx Landing page
    Landing page //
    2022-07-29

Shellcheck videos

+ Add

Linting Your Bash Scripts with Shellcheck

More videos:

  • Tutorial - How To Configure ShellCheck in Jenkins
  • Review - Write Safer Scripts Using Shellcheck

Checkmarx videos

+ Add

Viewing results and understanding security issues via Checkmarx online scanner

More videos:

  • Demo - Checkmarx CxSAST Demonstration
  • Review - Meetups at Checkmarx: An Introduction to API Security
  • Review - Source code review with Checkmarx
  • Review - Checkmarx Results Review

Category Popularity

0-100% (relative to Shellcheck and Checkmarx)

Shellcheck

Checkmarx

Code Analysis
8 8%
Code Analysis
92% 92
Code Coverage
17 17%
Code Coverage
83% 83
Code Review
14 14%
Code Review
86% 86
Security
0 0%
Security
100% 100

User comments

Share your experience with using Shellcheck and Checkmarx. For example, how are they different and which one is better?
Log in or Post with

Reviews

These are some of the external sources and on-site user reviews we've used to compare Shellcheck and Checkmarx

Shellcheck Reviews

We have no reviews of Shellcheck yet.
Be the first one to post

Checkmarx Reviews

Ten Best SonarQube alternatives in 2021
CheckMarx has been used to test the programs to rectify vulnerability in the code and try the security lapses. Checkmarx is the software program exposure Platform for the enterprise. It has an impressive Codebashing characteristic that has the threshold over SonarQube. The software tracking-reporting function is good too. The "delta-experiment" function is it's far genuinely...
Source: duecode.io

Social recommendations and mentions

Based on our record, Shellcheck seems to be a lot more popular than Checkmarx. While we know about 29 links to Shellcheck, we've tracked only 2 mentions of Checkmarx. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.

Shellcheck mentions (29)

  • I reduced the size of my Docker image by 40% – Dockerizing shell scripts
    > Are "Random shell scripts from the internet" categorically worse than "random docker images from the internet"? > With the shell script, you can literally read it in an ... ... https://shellcheck.net. Can't do that if all of the work is hidden in a Dockerfile's RUN statement. I have my team commit shell scripts in shell script files, and the Dockerfile just runs that shell script. - Source: Hacker News / 4 months ago
  • TermiC: Terminal C, Interactive C/C++ REPL shell created with BASH
    Nice script. It's... uhhh... Not shellcheck-clean. https://shellcheck.net/. - Source: Hacker News / 10 months ago
  • ChatGPT is a boon for linux noobs (but use with caution)
    Another fairly valuable resource is https://shellcheck.net which I use a bit more often than ChatGPT if I need help scripting. Source: about 1 year ago
  • I can't run the shell
    Always check your shell scripts at a site like http://shellcheck.net. Source: about 1 year ago
  • Need Help with Key Binding
    Once you get the command close to where you want it shellcheck.net is an amazing resource for fixing broken bash things. Paste your command line in and shellcheck will fix any syntax errors. Source: about 1 year ago
View more

Checkmarx mentions (2)

  • A Guide to DevSecOps with API Gateway
    Automate security testing: Use tools such as OWASP ZAP, SonarQube, or Checkmarx to automate security testing. This will help you identify security issues early in the development process and reduce the risk of vulnerabilities being introduced into your code. - Source: dev.to / over 1 year ago
  • 11 Top DevSecOps Tools
    Application Security (AppSec) is the forte of Checkmarx, which is an award-winning AppSec Testing tool that integrates security policies into the DevOps workflow and ensures security across the application lifecycle. Checkmarx scans all your code and provides actionable insights for critical vulnerabilities. Checkmarx also offers developer-friendly AppSec training that makes the transition to DevSecOps more... - Source: dev.to / over 2 years ago

What are some alternatives?

When comparing Shellcheck and Checkmarx, you can also consider the following products

Cppcheck - Cppcheck is an analysis tool for C/C++ code. It detects the types of bugs that the compilers normally fail to detect. The goal is no false positives. CppCheckDownload cppcheck for free.

SonarQube - SonarQube, a core component of the Sonar solution, is an open source, self-managed tool that systematically helps developers and organizations deliver Clean Code.

Coverity Scan - Find and fix defects in your Java, C/C++ or C# open source project for free

Veracode - Veracode's application security software products are simpler and more scalable to increase the resiliency of your application infrastructure.

PVS-Studio - PVS-Studio is a useful piece of software for detecting problems in source code. The software examines program codes written in C, C++, and C# for any problems that might prohibit the code from functioning properly.

Appknox - Appknox is a cloud-based mobile app security solution to detect threats and vulnerabilities in the app.

Loading...