The widgets in this category return static analysis results from Parasoft testing and code analysis tools, i.e., C/C++test, dotTEST, and Jtest. Multiple occurrences of a violation detected and reported by the tools are recognized as the same violation throughout the development lifecycle and is displayed in a Compliance widget as such.
In this chapter:
About Compliance Categories
A compliance category is a group of static analysis rules that enforce a specific concept in a compliance standard. For example, the OWASP Top 10 standard contains a compliance category called "A1 - Injection." Parasoft enforces each category with one or more static analysis rules. DTP ships with compliance configurations for several standards. You can also install and deploy additional artifacts to your DTP infrastructure to monitor compliance with other standards. The configurations display static analysis data according to each standards' compliance categories.
Categories - Top 5 Table
This widget requires a DTP Enterprise license.
Contact your Parasoft representative for additional information.
This widget shows the five compliance categories in the selected compliance configuration with the most violations. See About Compliance Categories for information about compliance categories in DTP.
Widget Configuration
Title | Enter a new title to replace the default title that appears on the dashboard. |
|---|---|
| Filter | Choose Dashboard Settings to use the dashboard filter or choose a filter from the drop-down menu. |
| Compliance | Choose a group of compliance categories from the drop-down menu. Compliance categories are driven by test configurations and their associated rule maps. See Rule Maps for additional information. |
| Target Build | Choose Dashboard Settings or a specific build from the drop-down menu. The data from the selected build will be rendered in the widget. |
Actions
Click on a category in the widget to open the Violations by Rule report for the category. See Violations by Rule.
Click more... to open the Violations by Category report. See Violations by Compliance Category report.
Custom Dashboard Properties
You can add this widget to your custom dashboards by specifying the following properties in the dashboard definition JSON file (see Custom Dashboard Templates for details):
"name": "categories", "type": "native", "uuid": "76c7e2ae-7618-11e6-8b77-86f30ca893d3"
Compliance By Category
This widget requires a DTP Enterprise license.
Contact your Parasoft representative for additional information.
This widget provides an overview of the compliance status for each category in the compliance configuration. The first column shows the name of the compliance category. The column labeled Passed/# of Rules shows the total number of Parasoft static analysis rules that were enabled in each category and how many rules do not have violations ("passed"). The widget also renders a chart with color-coded areas that provide an at-a-glance overview of compliance status:
- Green: At least 90% compliant
- Yellow: 70% - 89% compliant
- Red: Less than 70% compliant
See About Compliance Categories for information about compliance categories in DTP.
Widget Configuration
Title | Enter a new title to replace the default title that appears on the dashboard. |
|---|---|
| Filter | Choose Dashboard Settings to use the dashboard filter or choose a filter from the drop-down menu. |
| Compliance | Choose a compliance category from the drop-down menu. Compliance categories are driven by test configurations and their associated rule maps. See Rule Maps for additional information. |
| Target Build | Choose a build from the drop-down menu to serve as the current data for comparison. |
Actions
Click on a compliance status category bar to view the Violations by Rule report for the category. See Violations by Rule.
Custom Dashboard Properties
You can add this widget to your custom dashboards by specifying the following properties in the dashboard definition JSON file (see Custom Dashboard Templates for details):
"name": "compliance_by_category", "type": "native", "uuid": "b8876045-12e9-4899-b069-61010cc6d6a2"
Compliance by Category/Severity
This widget requires a DTP Enterprise license.
Contact your Parasoft representative for additional information.
This widget shows the number of rules that were enabled during analysis that are in compliance. The rules are grouped by rule category and broken down by severity. See About Compliance Categories for information about compliance categories in DTP.
Widget Configuration
Title | Enter a new title to replace the default title that appears on the dashboard. |
|---|---|
| Filter | Choose Dashboard Settings to use the dashboard filter or choose a filter from the drop-down menu. |
| Compliance | Choose a compliance category from the drop-down menu. Compliance categories are driven by test configurations and their associated rule maps. See Rule Maps for additional information. |
| Target Build | Choose a build from the drop-down menu to serve as the current data for comparison. |
Actions
Click on a rule category to view the Violations by Rule report for the category. See Violations by Rule.
Custom Dashboard Properties
You can add this widget to your custom dashboards by specifying the following properties in the dashboard definition JSON file (see Custom Dashboard Templates for details):
"name": "compliance_by_category_and_severity", "type": "native", "uuid": "e45c70c0-7ba2-11e6-8b77-86f30ca893d3"
Rules - Top 5 Table
This widget requires a DTP Enterprise license.
Contact your Parasoft representative for additional information.
This widget shows the five rules with the most violations.
Widget Configuration
Title | Enter a new title to replace the default title that appears on the dashboard. |
|---|---|
| Filter | Choose Dashboard Settings to use the dashboard filter or choose a filter from the drop-down menu. |
| Target Build | Choose a build from the drop-down menu. Only the data in this build will display in the widget. |
| Compliance | Choose a compliance category from the drop-down menu. Compliance categories are driven by test configurations and their associated rule maps. See Rule Maps for additional information. |
| Severity | Choose a severity level from the drop-down menu. |
Actions
Click on a rule ID in the widget to open the Violations Explorer filtered by the selected rule. See Violations Explorer.
Click more... to open the Violations by Rule report for the category. See Violations by Rule.
Custom Dashboard Properties
You can add this widget to your custom dashboards by specifying the following properties in the dashboard definition JSON file (see Custom Dashboard Templates for details):
"name": "rules", "type": "native", "uuid": "21238e2a-645c-4af9-a6ae-e7ee386ef0b3"
Rules in Compliance - Summary
This widget requires a DTP Enterprise license.
Contact your Parasoft representative for additional information.
This widgets shows the following information:
- how many static analysis rules for the selected compliance standard were enabled during code analysis
- how many violations were reported
- the overall percentage of rules that did not report violations
- the change in number of violations from the baseline build to the target build as a percentage (if applicable)
For 100% compliance, the code must not violate any of the static analysis rules used in the project.
Widget Configuration
Title | Enter a new title to replace the default title that appears on the dashboard. |
|---|---|
| Filter | Choose Dashboard Settings to use the dashboard filter or choose a filter from the drop-down menu. |
| Target Build | Choose a build from the drop-down menu. Only the data in this build will display in the widget. |
| Compliance | Choose a compliance category from the drop-down menu. Compliance categories are driven by test configurations and their associated rule maps. See Rule Maps for additional information. |
| Severity | Choose a severity level from the drop-down menu. |
Actions
Click on a category in the widget to open the Violations by Compliance Category report.
Custom Dashboard Properties
You can add this widget to your custom dashboards by specifying the following properties in the dashboard definition JSON file (see Custom Dashboard Templates for details):
"name": "rules_in_compliance", "type": "native", "uuid": "145bd2b5-3035-438e-b0e1-0bb3c846d1b3"
