| This rule was developed in part by <participant names here> at the October 20-22, 2017 OurCS Workshop (http://www.cs.cmu.edu/ourcs/register.html). For more information about this statement, see the About the OurCS Workshop page. |
|---|
Under Construction
This guideline is under construction.
In this space, describe the overall rule.
Noncompliant Code Example
This noncompliant code example shows an application that ...
TBD
Compliant Solution
In this compliant solution ...:
TBD
...You may enter more pairs of noncompliant code examples and compliant solutions, to exemplify different types. Once done with initial code examples, delete this section of purple-font text.
Risk Assessment
Summary of risk assessment.
Rule | Severity | Likelihood | Remediation Cost | Priority | Level |
|---|---|---|---|---|---|
TBD |
|
|
|
|
|
Automated Detection
Tool | Version | Checker | Description |
|---|---|---|---|
| TBD |
|
Related Vulnerabilities
TBD: Hyperlink text below "the CERT website", with link: https://www.kb.cert.org/vulnotes/bymetric?searchview&query=FIELD+KEYWORDS+contains+<RULE_ID> where <RULE_ID> has the 3-letter rule type followed by "-" and this guideline number. Then, remove this purple-font paragraph.
Search for vulnerabilities resulting from the violation of this rule on the CERT website.
Related Guidelines
Fill in the table below with at least one entry, and remove this purple-font line.
| TBD name of guideline taxonomy (e.g., MITRE CWE) | TBD the ID/name of a single entry in that taxonomy |
Bibliography
| [TBD] |