The categories list for each CodeSonar warning includes any relevant "Finding ID" identifiers from the Defense Information Systems Agency (DISA) Application Security and Development Security Technical Implementation Guide (STIG).

Relevant Warning Classes

The following links show the CodeSonar warning classes that are associated with DISA STIGs rules. For links to the manual and CSV mappings you will need to login into the support portal using your SSO account. 

Languages available:

  • Version 4, release 3 (C/C++, Java, and C# warning classes)
  • Version 3, release 10 (C/C++ warning classes only)



Was this article helpful?
0 out of 0 found this helpful

Articles in this section

See more
White Papers
Read our white papers to find useful information about software development in the IoT era, where devices must not only function with impeccable quality and safety but also remain resilient to cyber-attacks.
Product Sheets
Read our datasheets and company briefs to gain quick insights into our solutions, products, and integrations, including their capabilities, benefits, and supported environments.
Topics relating to DevSecOps, application security testing (AST), binary analysis, product security, software assurance and others.