Initial sanitizer configurations

.github/workflows/tests.yml

@@ -0,0 +1,53 @@
+# *******************************************************************************
+# Copyright (c) 2026 Contributors to the Eclipse Foundation
+#
+# See the NOTICE file(s) distributed with this work for additional
+# information regarding copyright ownership.
+#
+# This program and the accompanying materials are made available under the
+# terms of the Apache License Version 2.0 which is available at
+# https://www.apache.org/licenses/LICENSE-2.0
+#
+# SPDX-License-Identifier: Apache-2.0
+# *******************************************************************************
+
+name: Tests
+
+on:
+  pull_request:
+  push:
+    branches:
+      - main
+
+jobs:
+  test-sanitizers:
+    name: Validate sanitizer configs
+    runs-on: ubuntu-latest
+
+    strategy:
+      fail-fast: false
+      matrix:
+        config: [asan_ubsan_lsan]
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Setup Bazel
+        uses: bazel-contrib/setup-bazel@0.18.0
+        with:
+          disk-cache: ${{ github.workflow }}-${{ matrix.config }}
+          cache-save: ${{ github.event_name == 'push' }}
+
+      - name: Test with ${{ matrix.config }}
+        working-directory: tests
+        run: |
+          bazel test --config=${{ matrix.config }} //:sample_test --verbose_failures
+
+      - name: Upload test logs on failure
+        if: failure()
+        uses: actions/upload-artifact@v4
+        with:
+          name: test-logs-${{ matrix.config }}-${{ github.run_id }}
+          path: tests/bazel-testlogs/**/test.log
+          if-no-files-found: ignore

.gitignore

@@ -0,0 +1,14 @@
+# Bazel build outputs
+bazel-*
+.bazel-*
+
+# IDE files
+.vscode/
+.idea/
+*.swp
+*.swo
+*~
+
+# OS files
+.DS_Store
+Thumbs.db

BUILD.bazel

@@ -0,0 +1,20 @@
+# *******************************************************************************
+# Copyright (c) 2026 Contributors to the Eclipse Foundation
+#
+# See the NOTICE file(s) distributed with this work for additional
+# information regarding copyright ownership.
+#
+# This program and the accompanying materials are made available under the
+# terms of the Apache License Version 2.0 which is available at
+# https://www.apache.org/licenses/LICENSE-2.0
+#
+# SPDX-License-Identifier: Apache-2.0
+# *******************************************************************************
+
+exports_files(
+    [
+        "LICENSE.md",
+        "NOTICE",
+    ],
+    visibility = ["//visibility:public"],
+)

CONTRIBUTION.md

@@ -0,0 +1,15 @@
+# score_cpp_policies Contribution Guide
+
+The [Eclipse Safe Open Vehicle Core (S-CORE)](https://projects.eclipse.org/projects/automotive.score) project develops an open-source core stack for Software Defined Vehicles (SDVs). This repository centralizes the shared C++ quality tool policies (sanitizers, clang-tidy, clang-format) that S-CORE modules reuse to maintain consistent, safety-focused defaults.
+
+Project communication happens via the [score-dev mailing list](https://accounts.eclipse.org/mailing-list/score-dev), GitHub issues and pull requests, and the [Eclipse SCORE chatroom](https://chat.eclipse.org/#/room/#automotive.score:matrix.eclipse.org).
+
+Please note that the [Eclipse Foundation's Terms of Use](https://www.eclipse.org/legal/terms-of-use/) apply. Contributors must sign both the [ECA](https://www.eclipse.org/legal/ECA.php) and the [DCO](https://www.eclipse.org/legal/dco/).
+
+## Contributing changes
+
+1. Open an issue describing the policy change you propose (e.g., enabling/disabling a sanitizer option or clang-tidy rule) and the rationale, including links to any affected projects.
+2. Submit a PR referencing the issue. Keep changes minimal and well-documented, and include examples that justify the chosen defaults when possible.
+3. Request reviews from the S-CORE committers. Follow the commit message rules in the [Eclipse Foundation Project Handbook](https://www.eclipse.org/projects/handbook/#resources-commit).
+
+If you are new to the project, see the S-CORE process descriptions and templates at [https://eclipse-score.github.io/score/process_description/](https://eclipse-score.github.io/score/process_description/).

LICENSE.md

@@ -0,0 +1,13 @@
+Copyright 2026 Contributors to the Eclipse Foundation
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.

MODULE.bazel

@@ -0,0 +1,19 @@
+# *******************************************************************************
+# Copyright (c) 2026 Contributors to the Eclipse Foundation
+#
+# See the NOTICE file(s) distributed with this work for additional
+# information regarding copyright ownership.
+#
+# This program and the accompanying materials are made available under the
+# terms of the Apache License Version 2.0 which is available at
+# https://www.apache.org/licenses/LICENSE-2.0
+#
+# SPDX-License-Identifier: Apache-2.0
+# *******************************************************************************
+
+module(
+    name = "score_cpp_policies",
+    version = "0.0.1",
+)
+
+bazel_dep(name = "bazel_skylib", version = "1.8.2")

NOTICE

@@ -0,0 +1,23 @@
+# Notices for Eclipse S-CORE
+
+This content is produced and maintained by the Eclipse S-CORE project.
+
+* Project home: https://projects.eclipse.org/projects/automotive.score
+
+## Trademarks
+
+Eclipse S-CORE is a trademark of the Eclipse Foundation.
+
+## Copyright
+
+All content is the property of the respective authors or their employers.
+For more information regarding authorship of content, please consult the
+listed source code repository logs.
+
+## Declared Project Licenses
+
+This program and the accompanying materials are made available under the
+terms of the Apache License Version 2.0 which is available at
+https://www.apache.org/licenses/LICENSE-2.0
+
+SPDX-License-Identifier: Apache-2.0

README.md

@@ -1,2 +1,85 @@
 # score_cpp_policies
-Centralized C++ quality tool policies for S-CORE, including sanitizer configurations and safety-critical guidelines.
+
+Centralized C++ quality tool policies for Eclipse S-CORE, including sanitizer configurations and safety-critical guidelines.
+
+## Overview
+
+This repository provides shared configurations for C++ quality tools used across all S-CORE modules:
+
+- **Sanitizers** (ASan, TSan, UBSan, LSan) - Memory safety and undefined behavior detection
+- **Clang-tidy** (future) - Static analysis
+- **Clang-format** (future) - Code formatting
+- **Code coverage** (future) - Test coverage measurement
+
+## Usage
+
+### Using Sanitizers in Your Module
+
+Add to your module's `MODULE.bazel`:
+
+```python
+bazel_dep(name = "score_cpp_policies", version = "0.0.1")
+```
+
+Add to your module's `.bazelrc`:
+
+```bazelrc
+# Import centralized sanitizer configurations
+try-import %workspace%/../../../external/score_cpp_policies/sanitizer/sanitizer.bazelrc
+```
+
+### Running Tests with Sanitizers
+
+```bash
+# Run all tests with ASan + UBSan + LSan (recommended)
+bazel test --config=asan_ubsan_lsan //...
+
+# Run tests with ThreadSanitizer
+bazel test --config=tsan //...
+
+# Run tests with individual sanitizers
+bazel test --config=asan //...
+bazel test --config=ubsan //...
+bazel test --config=lsan //...
+```
+
+## Available Sanitizer Configurations
+
+### Combined Configuration (Recommended)
+
+- `--config=asan_ubsan_lsan` - Combines AddressSanitizer, UndefinedBehaviorSanitizer, and LeakSanitizer
+
+### Individual Configurations
+
+- `--config=asan` - AddressSanitizer (memory errors, buffer overflows)
+- `--config=tsan` - ThreadSanitizer (data races, deadlocks)
+- `--config=ubsan` - UndefinedBehaviorSanitizer (undefined behavior)
+- `--config=lsan` - LeakSanitizer (memory leaks)
+
+## Common Runtime Options
+
+All sanitizer configurations use these common options:
+
+- `exitcode=55` - Custom exit code for CI detection
+- `allow_addr2line=1` - Enable symbolization for better stack traces
+- `verbosity=1` - Enable detailed error reporting
+- `halt_on_error=1` - Stop on first error (fail-fast)
+
+## Testing This Repository
+
+```bash
+cd tests/
+bazel test --config=asan_ubsan_lsan //...
+```
+
+## Contributing
+
+See [CONTRIBUTION.md](CONTRIBUTION.md) for contribution guidelines.
+
+## License
+
+This project is licensed under the Apache License 2.0 - see [LICENSE.md](LICENSE.md) for details.
+
+## Copyright
+
+Copyright (c) 2026 Contributors to the Eclipse Foundation. See [NOTICE](NOTICE) for details.

sanitizer/BUILD.bazel

@@ -0,0 +1,17 @@
+# *******************************************************************************
+# Copyright (c) 2026 Contributors to the Eclipse Foundation
+#
+# See the NOTICE file(s) distributed with this work for additional
+# information regarding copyright ownership.
+#
+# This program and the accompanying materials are made available under the
+# terms of the Apache License Version 2.0 which is available at
+# https://www.apache.org/licenses/LICENSE-2.0
+#
+# SPDX-License-Identifier: Apache-2.0
+# *******************************************************************************
+
+exports_files(
+    ["sanitizer.bazelrc"],
+    visibility = ["//visibility:public"],
+)

sanitizer/sanitizer.bazelrc

@@ -0,0 +1,46 @@
+# *******************************************************************************
+# Copyright (c) 2026 Contributors to the Eclipse Foundation
+#
+# See the NOTICE file(s) distributed with this work for additional
+# information regarding copyright ownership.
+#
+# This program and the accompanying materials are made available under the
+# terms of the Apache License Version 2.0 which is available at
+# https://www.apache.org/licenses/LICENSE-2.0
+#
+# SPDX-License-Identifier: Apache-2.0
+# *******************************************************************************
+
+# ASan + UBSan + LSan (Combined - recommended for most testing)
+test:asan_ubsan_lsan --compilation_mode=dbg
+test:asan_ubsan_lsan --features=asan
+test:asan_ubsan_lsan --features=ubsan
+test:asan_ubsan_lsan --features=lsan
+test:asan_ubsan_lsan --platform_suffix=asan_ubsan_lsan
+test:asan_ubsan_lsan --test_env=ASAN_OPTIONS=exitcode=55:allow_addr2line=1:verbosity=1:detect_leaks=1:halt_on_error=1:allocator_may_return_null=1
+test:asan_ubsan_lsan --test_env=UBSAN_OPTIONS=exitcode=55:allow_addr2line=1:verbosity=1:print_stacktrace=1:halt_on_error=1
+test:asan_ubsan_lsan --test_env=LSAN_OPTIONS=exitcode=55:allow_addr2line=1:verbosity=1:halt_on_error=1
+
+# ThreadSanitizer (for concurrency issues - cannot be combined with ASan)
+test:tsan --compilation_mode=dbg
+test:tsan --features=tsan
+test:tsan --platform_suffix=tsan
+test:tsan --test_env=TSAN_OPTIONS=exitcode=55:allow_addr2line=1:verbosity=1:halt_on_error=1:detect_deadlocks=1
+
+# AddressSanitizer only (memory errors, no leak detection)
+test:asan --compilation_mode=dbg
+test:asan --features=asan
+test:asan --platform_suffix=asan
+test:asan --test_env=ASAN_OPTIONS=exitcode=55:allow_addr2line=1:verbosity=1:detect_leaks=0:halt_on_error=1
+
+# UndefinedBehaviorSanitizer only (undefined behavior detection)
+test:ubsan --compilation_mode=dbg
+test:ubsan --features=ubsan
+test:ubsan --platform_suffix=ubsan
+test:ubsan --test_env=UBSAN_OPTIONS=exitcode=55:allow_addr2line=1:verbosity=1:print_stacktrace=1:halt_on_error=1
+
+# LeakSanitizer only (memory leak detection)
+test:lsan --compilation_mode=dbg
+test:lsan --features=lsan
+test:lsan --platform_suffix=lsan
+test:lsan --test_env=LSAN_OPTIONS=exitcode=55:allow_addr2line=1:verbosity=1:halt_on_error=1

tests/.bazelrc

@@ -0,0 +1,17 @@
+# *******************************************************************************
+# Copyright (c) 2026 Contributors to the Eclipse Foundation
+#
+# See the NOTICE file(s) distributed with this work for additional
+# information regarding copyright ownership.
+#
+# This program and the accompanying materials are made available under the
+# terms of the Apache License Version 2.0 which is available at
+# https://www.apache.org/licenses/LICENSE-2.0
+#
+# SPDX-License-Identifier: Apache-2.0
+# *******************************************************************************
+
+try-import %workspace%/../sanitizer/sanitizer.bazelrc
+
+common --registry=https://raw.githubusercontent.com/eclipse-score/bazel_registry/main/
+common --registry=https://bcr.bazel.build

tests/BUILD.bazel

@@ -0,0 +1,23 @@
+# *******************************************************************************
+# Copyright (c) 2026 Contributors to the Eclipse Foundation
+#
+# See the NOTICE file(s) distributed with this work for additional
+# information regarding copyright ownership.
+#
+# This program and the accompanying materials are made available under the
+# terms of the Apache License Version 2.0 which is available at
+# https://www.apache.org/licenses/LICENSE-2.0
+#
+# SPDX-License-Identifier: Apache-2.0
+# *******************************************************************************
+
+load("@rules_cc//cc:defs.bzl", "cc_test")
+
+cc_test(
+    name = "sample_test",
+    srcs = ["sample_test.cpp"],
+    deps = [
+        "@googletest//:gtest",
+        "@googletest//:gtest_main",
+    ],
+)

tests/MODULE.bazel

@@ -0,0 +1,28 @@
+# *******************************************************************************
+# Copyright (c) 2026 Contributors to the Eclipse Foundation
+#
+# See the NOTICE file(s) distributed with this work for additional
+# information regarding copyright ownership.
+#
+# This program and the accompanying materials are made available under the
+# terms of the Apache License Version 2.0 which is available at
+# https://www.apache.org/licenses/LICENSE-2.0
+#
+# SPDX-License-Identifier: Apache-2.0
+# *******************************************************************************
+
+module(
+    name = "score_cpp_policies_tests",
+    version = "0.0.0",
+)
+
+bazel_dep(name = "googletest", version = "1.17.0.bcr.2")
+bazel_dep(name = "rules_cc", version = "0.2.16")
+bazel_dep(name = "score_bazel_cpp_toolchains", version = "0.2.2")
+bazel_dep(name = "score_bazel_platforms", version = "0.0.4")
+
+bazel_dep(name = "score_cpp_policies", version = "")
+local_path_override(
+    module_name = "score_cpp_policies",
+    path = "..",
+)