In order to improve efficiency and to ensure product quality, they needed compliance tools that could check key software security issues such as MISRA, AUTOSAR and logic vulnerabilities. Manual code review was almost impossible, so the hunt was on to find an analysis tool that could automate code review and quickly locate issues, defects and troubleshoot complex logical vulnerabilities.
In addition, the company required many customized rules based on their very specific business characteristics. Historical legacy issues also needed to be resolved gradually without adding any additional security issues. Any tools had to be easy-to-use, highly reliable and fully integrated into the CI/CD development process.