← Policy gallery

cert_conformance_recorded

coding-standards auditability pure_temporal secure-codingcertseirisk-baseddeviations-recordsrag-red

A conformance record (which rules were checked, findings, deviations) exists before release.

Formula

G(Release → P(conformance_summary))

Why it matters

SEI CERT conformance: a project records its conformance to the ruleset — the guidelines checked, the findings and their levels, and any deviations.

Examples

passes the risk/remediation step is evidenced

fails the required assessment/remediation is absent

Use it

ponens policies add cert_conformance_recorded --into ./trace.json
ponens trace check ./trace.json