← Policy gallery

cert_rule_violation_remediated

coding-standards security pure_temporal secure-codingcertseirisk-basedrules-recommendationsrag-red

Violations of CERT Rules (normative) are remediated, or covered by an approved deviation.

Formula

G(Finding ∧ cert_rule_violation → remediated ∨ deviation_approved)

Why it matters

SEI CERT: Rules are normative requirements — a violation is a defect that must be corrected; an exception is permissible only via a documented, approved deviation.

Examples

passes the risk/remediation step is evidenced

fails the required assessment/remediation is absent

Use it

ponens policies add cert_rule_violation_remediated --into ./trace.json
ponens trace check ./trace.json