CISQ Automated Source Code Quality Measures with draft list of CWEs associated with Data Protection
Attached is the flat list of CWEs that are relevant to CISQ Automated Source Code Quality Measures, including the draft list of CWEs associated with Data Protection. Note: For CISQ ASCQM, the parent CWEs are included even if all applicable
child CWEs are included.
Additional review and input is still welcome.
Obvious, the CWE Data Protection View to be posted in Nov would include hardware design flaws that are not in scope of the CISQ ASCQM.
Director for Government & Critical Infrastructure Programs