Configuring industry-specific coding standards and checkers

Klocwork provides industry-specific coding standard taxonomies to measure compliance with specific standards. Taxonomy files for CERT, CWE, DISA STIG, MISRA and others are provided for you in your <server_installation>/taxonomies folder, that you can import as you choose. For more information about all the standards that we support, see our list of Coding standards mapped to Klocwork checkers.

Importing industry-specific coding standard taxonomies

Provided you have the "Change project settings" permission, you can import any of our industry-specific coding standard taxonomies from your <server_installation>/taxonomies folder.

In almost all cases, the .tconf files contain a single taxonomy. One exception is the cert_c_all.tconf file (and its related Japanese version, cert_c_all_ja.tconf). These files contain two taxonomies, specifically, CERT C Recommendations, and CERT C Rules.

1. Log in to Validate.
2. In the Validate analysis project list, click the project you want to upload the file to; the project details appear.
3. In the project details, click Configuration.
4. On the Configuration page, click Add a configuration file.
5. Click the Choose file button, then browse to your <server_installation>/taxonomies folder.
6. Double-click the taxonomy file you want to import (for example, 'misra_c_2012_c99.tconf') and click Upload.

The taxonomy file you've imported appears in the taxonomy menu on the left. You can click a taxonomy and enable or disable checkers that apply to that standard as needed. Click the Save icon to save your changes. Changes come into effect during the next integration build analysis.