Repository files navigation

This repository contains CodeQL queries and libraries which support various Coding Standards.

Carnegie Mellon and CERT are registered trademarks of Carnegie Mellon University.

This repository contains CodeQL queries and libraries which support various Coding Standards for theC++14 programming language.

The following coding standards are supported:

• AUTOSAR - Guidelines for the use of C++14 language in critical and safety-related systems Release 20-11
• MISRA C++:2008 (support limited to the rules specified in AUTOSAR 20-11).
• SEI CERT C++ Coding Standard: Rules for Developing Safe, Reliable, and Secure Systems (2016 Edition)

In addition, the following Coding Standards for the C programming language are under development:

• SEI CERT C Coding Standard: Rules for Developing Safe, Reliable, and Secure Systems (2016 Edition)
• MISRA C 2012.

The use of the CodeQL Coding Standards is extensively documented in theuser manual.

The CodeQL Coding Standards is qualified as a "software tool" under "Part 8: Supporting processes" of ISO 26262 ("Road vehicles - Functional Safety") as described in ourtool qualification documents.Use of the CodeQL Coding Standards is only compliant with the qualification if it is used as distributed by GitHub and according to the requirements described in theuser manual.

Any changes to the CodeQL Coding Standards distribution and/or deviations from the requirements and steps described in theuser manual runs the risk of non compliance.

We welcome contributions to our standard library and standard checks. Do you have an idea for a new check, or how to improve an existing query? Then please go ahead and open a pull request! Before you do, though, please take the time to read ourcontributing guidelines. You can also consult ourdevelopment handbook to learn about the requirements for a contribution.

Unless otherwise noted below, the code in this repository is licensed under theMIT License byGitHub.

Parts of certain query help files (.md extension) are reproduced under the following licenses:

• SEI CERT® Coding Standards (reproduced as of 15th March 2021).

These licenses are directly referenced where applicable.

All code in thethirdparty directory is licensed according to the files present in those sub directories.

All header files inc/common/test/includes/standard-library are licensed according toLICENSE

¹This repository incorporates portions of the SEI CERT® Coding Standards available athttps://wiki.sei.cmu.edu/confluence/display/seccode/SEI+CERT+Coding+Standards; however, such use does not necessarily constitute or imply an endorsement, recommendation, or favoring by Carnegie Mellon University or its Software Engineering Institute.testtest