Merge pull request #9 from OPPIDA/docs/cppcheck

Author: nolliv22

README.md

@@ -62,6 +62,7 @@ cd CodeSecTools
 |Snyk Code|C, Java|✅|❌ (Rate limited)|
 |Bearer|Java|✅|✅|
 |SpotBugs|Java|✅|✅|
+|Cppcheck|C|✅|✅|
 
 ## Usage
 

docs/sast/index.md

@@ -43,9 +43,16 @@ classDiagram
 
     class PrebuiltSAST {
     }
-    
+
+    class PrebuiltBuildlessSAST {
+        +artefact_name: str
+        +artefact_type: str
+    }
+
     SAST <|-- BuildlessSAST
     SAST <|-- PrebuiltSAST
+    BuildlessSAST <|-- PrebuiltBuildlessSAST
+    PrebuiltSAST <|-- PrebuiltBuildlessSAST
 
     class AnalysisResult {
         +name: str

docs/sast/profiles/cppcheck.yaml

@@ -0,0 +1,13 @@
+name: Cppcheck
+description: Cppcheck is a static analysis tool for C/C++ code. It provides unique code analysis to detect bugs and focuses on detecting undefined behaviour and dangerous coding constructs. The goal is to have very few false positives. Cppcheck is designed to be able to analyze your C/C++ code even if it has non-standard syntax (common in embedded projects).
+type: Data Flow Analysis (Compiled code)
+url: https://cppcheck.sourceforge.io/
+supported_version: 2.13.0
+supported_languages:
+  - C
+legal:
+  license: GPL-3.0
+  license_type: Copyleft
+  license_url: https://github.com/danmar/cppcheck/blob/main/COPYING
+requirements:
+  - An existing installation of Cppcheck.