...
- Install the Security Compliance Pack into DTP Extension Designer.
- Deploy the CERT C++ Compliance artifact into your DTP environment. This also deploys the CERT C++ Compliance extension assets.
Analyze code with C/C++test using the SEI CERT C++ Rules test configuration and report violations to DTP. You can configure C/C++test to use the local test configuration or the test configuration shipped with the Security Compliance Pack. The test configuration and rulemap.xml file configures analysis rules to report violations according to CERT C++ guidelines.
Note If you are using the 2022.1.1 release of the Security Compliance Pack and intend to use the shipped CERT test configurations for analysis, you will need to specify them using the 2022.1.1 version in the test configuration name.
For example: "SEI CERT C++ Rules [Parasoft 2022.1.1]"- Add the CERT C++ Compliance dashboard and widgets to your DTP interface. The dashboard widgets and shows the reported violations within the context of CERT C++ guidelines.
- Interact with the widgets and reports to identify code that needs to be fixed, as well as print out the reports for auditing purposes.
...