CodeSonar – GitHub Integration
SAST WHEN SAFETY AND SECURITY MATTER
CodeSonar seamlessly integrates into the GitHub Actions enabling developers to address security and functional safety issues without disruption to their software development life cycle (SDLC). Developers working in GitHub get warnings directly from CodeSonar with mappings to industry standards and annotation details to quickly understand warnings and efficiently fix them.
Capabilities & Benefits
- CodeSonar integrates directly with GitHub Actions, SAST results are presented directly in the GitHub built-in code scanning interface.
- Developers can review the function caller list without having to leave GitHub Actions.
- Industry standards and rules provide software developers with guidelines and best practices for coding. Following these standards is important for safety-critical applications in industries such as automotive, industrial controls, medical, aerospace/defense and others. MISRA, ISO 26362/IEC 61508, JPL, CERT C/C++ and others) and presents the results in GitHub to automate the detection of common coding errors.