This coding standard is organized
...
into 15 chapters containing rules in specific topic areas
...
followed by
...
four appendices. Appendix A contains the bibliography. Appendix B lists the definitions of terms used throughout the standard.
...
Appendix C lists the undefined behaviors from the C Standard, Annex J, J.2 [ISO/IEC 9899:2011], numbered and classified for easy reference.
...
These numbered undefined behaviors are referenced frequently from the rules.
...
Appendix D lists unspecified behaviors from the C Standard, Annex J, J.2 [ISO/IEC 9899:2011].
...
These unspecified behaviors are occasionally referenced from the rules as well.
Most rules have a consistent structure.
...
Each rule in this standard has a unique identifier, which is included in the title.
...
The title and the introductory paragraphs define the rule and are typically followed by one or more pairs of noncompliant code examples and compliant solutions.
...
Each rule also includes a risk assessment, related guidelines, and a bibliography (where applicable).
...
Rules may also include a table of related vulnerabilities. The recommendations in this wiki are organized in a similar fashion.
Identifiers
Each rule and recommendation is given a unique identifier. These identifiers consist of three parts:
...
The three-letter mnemonic can be used to group similar coding practices and to indicate to which category a coding practice belongs.
The numeric value is used to give each coding practice a unique identifier. Numeric values in the range of 00 to 29 are reserved for recommendations, and values in the range of 30 to 99 are reserved for rules. Rules and recommendations are frequently referenced from the rules in this standard by their identifier and title.
Noncompliant Code Examples and Compliant Solutions
...