...
To ensure that the source code conforms to this secure coding standard, it is necessary to have measures in place which check that none of the rules have been brokenthat check for rules violations. The most effective means of achieving this is to use one or more static analysis tools. Where a rule cannot be checked by a tool, then a manual review is required.
...