← Policy gallery

cert_undecidable_manual_review

coding-standards workflow pure_temporal secure-codingcertseirisk-basedverificationrag-amber

Potential violations of undecidable rules (not fully checkable by static analysis) are manually reviewed.

Formula

G(undecidable_violation → manual_review)

Why it matters

SEI CERT: some rules are undecidable; a sound analyzer over-approximates, and remaining cases require manual review to confirm conformance.

Examples

passes the risk/remediation step is evidenced

fails the required assessment/remediation is absent

Use it

ponens policies add cert_undecidable_manual_review --into ./trace.json
ponens trace check ./trace.json