Case Study: Calix achieves faster, more secure software releases with Synopsys application security tools

Releasing Secure Code That Meets Rigorous Standards

Calix, a San Jose–based provider of cloud and software platforms for more than 1,400 communications service providers, builds and manages tens of millions of lines of code. The company faced growing security and IP risks from increasing vulnerability disclosures and widespread open‑source use, while manual analysis and an outdated scanner made compliance and remediation slow, costly, and error prone.

Calix implemented Synopsys tools—Coverity for SAST, Black Duck for software composition analysis, and Defensics for fuzzing—integrated into its Bamboo CI pipeline so scans run automatically with each build and produce centralized, live reports. The result was faster, more accurate vulnerability and license detection, easier remediation via automated reporting and bug-tracking integration, and overall improved software security and development velocity.

Calix

Vivek Singh

Director Engineering, Product Engineering Services