Software systems can be validated as conforming to the CERT C Secure Coding Standard. Source code analysis tools, including compilers and static analysis tools, can be certified as able to validate that source code as conforming conforms to this standard.
Source Code Compliance
The CERT C Secure Coding Standard can be used as a measure of software security by determining the degree to which a software system complies with the rules and recommendations in this standard. While Although compliance does not guarantee the absence of vulnerabilities (for example, vulnerabilities resulting from design flaws), it does guarantee the absence of coding errors that are commonly found to be the root causes of vulnerabilities.
...