Static code analysis is state of the art in software development. Various tools are available on the market. They verify coding rules (for example MISRA) and scan source code for bugs, vulnerabilities, and code smells.
However, things are not always that easy. On the one hand, different development projects use different programming languages and IDEs. Legacy code introduces dependencies which are not necessarily compatible with the current environment. On the other hand, the tools used for static code analysis should be easy to use. Ideally, all source code projects are scanned using the same set of commands, even if different tools are used.
The challenge consisted in building one single tool environment for static code analysis of source code in C and C#, taking all those restrictions into account.