...
- Install the Security Compliance Pack into DTP Extension Designer.
- Deploy the CERT C Compliance artifact into your DTP environment. This also deploys the CERT C Compliance extension assets.
Analyze code with C/C++test using the SEI CERT C Standard test configuration and report violations to DTP. You can configure C/C++test to use the local test configuration or the test configuration shipped with the Security Compliance Pack.
Note If you are using the 2022.1.1 release of the Security Compliance Pack and intend to use the shipped CERT test configurations for analysis, you will need to specify them using the 2022.1.1 version in the test configuration name.
For example: "SEI CERT C Guidelines [Parasoft 2022.1.1]"- Add the CERT C Compliance dashboard and widgets to your DTP interface to view the reported violations within the context of CERT C guidelines.
- Interact with the widgets and reports to identify code that needs to be fixed, as well as print out the reports for auditing purposes.
...