Create Req Inspection Template in Folders #229
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change | ||||
|---|---|---|---|---|---|---|
| @@ -0,0 +1,160 @@ | ||||||
| .. | ||||||
| # ******************************************************************************* | ||||||
| # Copyright (c) 2025 Contributors to the Eclipse Foundation | ||||||
| # | ||||||
| # See the NOTICE file(s) distributed with this work for additional | ||||||
| # information regarding copyright ownership. | ||||||
| # | ||||||
| # This program and the accompanying materials are made available under the | ||||||
| # terms of the Apache License Version 2.0 which is available at | ||||||
| # https://www.apache.org/licenses/LICENSE-2.0 | ||||||
| # | ||||||
| # SPDX-License-Identifier: Apache-2.0 | ||||||
| # ******************************************************************************* | ||||||
|
|
||||||
|
|
||||||
| .. document:: [Your Feature Name] Requirements Inspection Checklist | ||||||
| :id: doc__feature_name_req_inspection | ||||||
| :status: draft | ||||||
| :safety: ASIL_B | ||||||
| :realizes: wp__requirements_inspect | ||||||
| :tags: template | ||||||
|
|
||||||
| .. attention:: | ||||||
| The above directive must be updated according to your Feature. | ||||||
|
|
||||||
| - Modify ``Your Feature Name`` to be your Feature Name | ||||||
| - Modify ``id`` to be your Feature Name in upper snake case preceded by ``doc__`` and followed by ``_req_inspection`` | ||||||
| - Adjust ``status`` to be ``valid`` | ||||||
| - Adjust ``safety`` and ``tags`` according to your needs | ||||||
|
|
||||||
| [Your Feature Name] Requirement Inspection Checklist | ||||||
| ====================================================== | ||||||
|
|
||||||
| **Purpose** | ||||||
| The purpose of this requirement inspection checklist is to collect the topics to be checked during requirements inspection. | ||||||
|
|
||||||
| **Checklist** | ||||||
|
|
||||||
| .. list-table:: Feature Requirement Inspection Checklist | ||||||
| :header-rows: 1 | ||||||
| :widths: 10,30,50,6,6,8 | ||||||
|
|
||||||
| * - Review ID | ||||||
| - Acceptance Criteria | ||||||
| - Guidance | ||||||
| - Passed | ||||||
| - Remarks | ||||||
| - Issue link | ||||||
| * - REQ_01_01 | ||||||
| - Is the requirement sentence template used? | ||||||
PandaeDo marked this conversation as resolved.
Outdated
Show resolved
Hide resolved
|
||||||
| - see :need:`gd_temp__req_formulation`, this includes the use of "shall". | ||||||
|
Member
There was a problem hiding this comment. We could consider to refer to RFC2119
Contributor
Author
There was a problem hiding this comment. I would have said reference to S-CORE formulation template is enough. Why pulling in another standard? I am not in favour of also allowing "must", "should", "may". |
||||||
| - | ||||||
| - | ||||||
| - | ||||||
| * - REQ_02_01 | ||||||
| - Is the requirement description *comprehensible* ? | ||||||
| - If you think the requirement is hard to understand, comment here. | ||||||
| - | ||||||
| - | ||||||
| - | ||||||
| * - REQ_02_02 | ||||||
| - Is the requirement description *unambiguous* ? | ||||||
|
Member
There was a problem hiding this comment. Would this be already covered as part of comprehensible or do we want to keep it explicitly.
Contributor
Author
There was a problem hiding this comment. I would keep, as the guidance hints in another direction including tool support. We could drop if fully automated. |
||||||
| - Especially search for "weak words" like "about", "etc.", "relevant" and others (see the internet documentation on this). This check shall be supported by tooling. | ||||||
| - | ||||||
| - | ||||||
| - | ||||||
| * - REQ_02_03 | ||||||
| - Is the requirement description *atomic* ? | ||||||
| - A good way to think about this is to consider if the requirement may be tested by one (positive) test case or needs more of these. The sentence template should also avoid being non-atomic already. Note that there are cases where also non-atomic requirements are the better ones, for example if those are better understandable. | ||||||
| - | ||||||
| - | ||||||
| - | ||||||
| * - REQ_02_04 | ||||||
| - Is the requirement description *feasible* ? | ||||||
| - Expectation is that at the time of the inspection the requirement has already some implementation. This can be checked via traces, but also :need:`gd_req__req_attr_impl` shows this. In case the requirement is not mature enough at the time of inspection (i.e. not implemented at least as "proof-of-concept"), a development expert should be invited to the Pull-Request review to explicitly check this item. | ||||||
| - | ||||||
| - | ||||||
| - | ||||||
| * - REQ_02_05 | ||||||
| - Is the requirement description *independent from implementation* ? | ||||||
| - This checkpoint should improve requirements definition in the sense that the "what" is described and not the "how" - the latter should be described in architecture/design derived from the requirement. But there can also be a good reason for this, for example we would require using a file format like JSON and even specify the formatting standard already on stakeholder requirement level because we want to be compatible. A finding in this checkpoint does not mean there is a safety problem in the requirement. | ||||||
| - | ||||||
| - | ||||||
| - | ||||||
| * - REQ_03_01 | ||||||
| - For stakeholder requirements: Is the *rationale* correct? | ||||||
|
Member
There was a problem hiding this comment. Do we keep it here as this is for feature requirements? I assume argument is to have one checklist for all level, IIRC.
Contributor
Author
There was a problem hiding this comment. Discussed in process community - decided to stay with one template. |
||||||
| - Rationales explain why the top level requirements were invented. Do those cover the requirement? | ||||||
|
||||||
| - Rationales explain why the top level requirements were invented. Do those cover the requirement? | |
| - Rationales explain why the top level requirements were created. Do those cover the requirement? |
Outdated
Member
There was a problem hiding this comment.
Why parent requirements. Also would it be are timing constraints considered properly?
Contributor
Author
There was a problem hiding this comment.
I think this comes from the idea that safety timing constraints usually come from some FTTI set on system level.
Contributor
Author
There was a problem hiding this comment.
removed as covered in the "Guidance"
Outdated
Member
There was a problem hiding this comment.
Suggested change
| - This bullet point encourages to think about timing constraints even if those are not explicitly mentioned in the parent requirement. If the reviewer of a requirement already knows or suspects that the implementation will be time consuming, one should think of the expectation of a "user". | |
| - This bullet point encourages to think about timing constraints even if those are not explicitly mentioned in the parent requirement. If the reviewer of a requirement already knows or suspects that the code execution will be time consuming, one should think of the expectation of a "user". |
Member
There was a problem hiding this comment.
Basically every code takes time to execute. Maybe we can consider some rewording.
Contributor
Author
There was a problem hiding this comment.
I see, I will try to reformulate.
PandaeDo marked this conversation as resolved.
Outdated
Show resolved
Hide resolved
PandaeDo marked this conversation as resolved.
Outdated
Show resolved
Hide resolved
PandaeDo marked this conversation as resolved.
Outdated
Show resolved
Hide resolved
PandaeDo marked this conversation as resolved.
Outdated
Show resolved
Hide resolved
PandaeDo marked this conversation as resolved.
Show resolved
Hide resolved
PandaeDo marked this conversation as resolved.
Show resolved
Hide resolved
PandaeDo marked this conversation as resolved.
Outdated
Show resolved
Hide resolved
PandaeDo marked this conversation as resolved.
Outdated
Show resolved
Hide resolved
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,160 @@ | ||
| .. | ||
| # ******************************************************************************* | ||
| # Copyright (c) 2025 Contributors to the Eclipse Foundation | ||
| # | ||
| # See the NOTICE file(s) distributed with this work for additional | ||
| # information regarding copyright ownership. | ||
| # | ||
| # This program and the accompanying materials are made available under the | ||
| # terms of the Apache License Version 2.0 which is available at | ||
| # https://www.apache.org/licenses/LICENSE-2.0 | ||
| # | ||
| # SPDX-License-Identifier: Apache-2.0 | ||
| # ******************************************************************************* | ||
|
|
||
|
|
||
| .. document:: [Your Component Name] Requirements Inspection Checklist | ||
| :id: doc__component_name_req_inspection | ||
| :status: draft | ||
| :safety: ASIL_B | ||
| :realizes: wp__requirements_inspect | ||
| :tags: template | ||
|
|
||
| .. attention:: | ||
| The above directive must be updated according to your Component. | ||
|
|
||
| - Modify ``Your Component Name`` to be your Component Name | ||
| - Modify ``id`` to be your Component Name in upper snake case preceded by ``doc__`` and followed by ``_req_inspection`` | ||
| - Adjust ``status`` to be ``valid`` | ||
| - Adjust ``safety`` and ``tags`` according to your needs | ||
|
|
||
| [Your Component Name] Requirement Inspection Checklist | ||
PandaeDo marked this conversation as resolved.
Outdated
Show resolved
Hide resolved
|
||
| ====================================================== | ||
|
|
||
| **Purpose** | ||
| The purpose of this requirement inspection checklist is to collect the topics to be checked during requirements inspection. | ||
|
|
||
| **Checklist** | ||
|
|
||
| .. list-table:: Component Requirement Inspection Checklist | ||
| :header-rows: 1 | ||
| :widths: 10,30,50,6,6,8 | ||
|
|
||
| * - Review ID | ||
| - Acceptance Criteria | ||
| - Guidance | ||
| - Passed | ||
| - Remarks | ||
| - Issue link | ||
| * - REQ_01_01 | ||
| - Is the requirement sentence template used? | ||
PandaeDo marked this conversation as resolved.
Outdated
Show resolved
Hide resolved
|
||
| - see :need:`gd_temp__req_formulation`, this includes the use of "shall". | ||
| - | ||
| - | ||
| - | ||
| * - REQ_02_01 | ||
| - Is the requirement description *comprehensible* ? | ||
| - If you think the requirement is hard to understand, comment here. | ||
| - | ||
| - | ||
| - | ||
| * - REQ_02_02 | ||
| - Is the requirement description *unambiguous* ? | ||
| - Especially search for "weak words" like "about", "etc.", "relevant" and others (see the internet documentation on this). This check shall be supported by tooling. | ||
| - | ||
| - | ||
| - | ||
| * - REQ_02_03 | ||
| - Is the requirement description *atomic* ? | ||
| - A good way to think about this is to consider if the requirement may be tested by one (positive) test case or needs more of these. The sentence template should also avoid being non-atomic already. Note that there are cases where also non-atomic requirements are the better ones, for example if those are better understandable. | ||
| - | ||
| - | ||
| - | ||
| * - REQ_02_04 | ||
| - Is the requirement description *feasible* ? | ||
| - Expectation is that at the time of the inspection the requirement has already some implementation. This can be checked via traces, but also :need:`gd_req__req_attr_impl` shows this. In case the requirement is not mature enough at the time of inspection (i.e. not implemented at least as "proof-of-concept"), a development expert should be invited to the Pull-Request review to explicitly check this item. | ||
| - | ||
| - | ||
| - | ||
| * - REQ_02_05 | ||
| - Is the requirement description *independent from implementation* ? | ||
| - This checkpoint should improve requirements definition in the sense that the "what" is described and not the "how" - the latter should be described in architecture/design derived from the requirement. But there can also be a good reason for this, for example we would require using a file format like JSON and even specify the formatting standard already on stakeholder requirement level because we want to be compatible. A finding in this checkpoint does not mean there is a safety problem in the requirement. | ||
| - | ||
| - | ||
| - | ||
| * - REQ_03_01 | ||
| - For stakeholder requirements: Is the *rationale* correct? | ||
| - Rationales explain why the top level requirements were invented. Do those cover the requirement? | ||
| - | ||
| - | ||
| - | ||
| * - REQ_03_02 | ||
| - For other requirements: Is the *linkage to the parent requirement* correct? | ||
| - Linkage to correct levels and ASIL attributes is checked automatically, but it needs checking if the child requirement implements (at least) a part of the parent requirement. | ||
| - | ||
| - | ||
| - | ||
| * - REQ_04_01 | ||
| - Is the requirement *internally and externally consistent*? | ||
| - Does the requirement contradict other requirements within the same or higher levels? One may restrict the search to the feature for component requirements, for features to other features using same components. | ||
| - | ||
| - | ||
| - | ||
| * - REQ_05_01 | ||
| - Do the software requirements consider *timing constraints of the parent requirement*? | ||
| - This bullet point encourages to think about timing constraints even if those are not explicitly mentioned in the parent requirement. If the reviewer of a requirement already knows or suspects that the implementation will be time consuming, one should think of the expectation of a "user". | ||
| - | ||
| - | ||
| - | ||
| * - REQ_06_01 | ||
| - Does the Requirement consider *external interfaces*? | ||
| - The SW platform's external interfaces (to the user) are defined in the Feature Architecture, so the Feature and Component Requirements should determine the data consumed and set on these interfaces. Are output values completely defined? | ||
| - | ||
| - | ||
| - | ||
| * - REQ_07_01 | ||
| - Is the *ASIL Attribute* set correctly? | ||
| - Derived requirements are checked automatically, see :need:`gd_req__req_linkage_safety`. But for the top level requirements this needs to be checked for correctness. Also AoU from external components need check for correct ASIL as those are the "origin" of safety requirements towards the SW platform. | ||
| - | ||
| - | ||
| - | ||
| * - REQ_07_02 | ||
| - Is the attribute *security* set correctly? | ||
| - Stakeholder requirements security attribute should be set based on Threat Analysis and Risk Assessment (TARA) (process is TBD). Checklist item is supported by automated check: "Every requirement which satisfies a requirement with security attribute set to YES inherits this". Expectation is that the feature/component requirements/architecture may also be subject to a Software Security Criticality Analysis (process is TBD). | ||
| - | ||
| - | ||
| - | ||
| * - REQ_08_01 | ||
| - Is the requirement *verifiable*? | ||
| - Expectation is that at the time of the inspection already tests are created for the requirement. This can be checked via traces, but also :need:`gd_req__req_attr_test_covered` shows this. In case the requirement is not mature enough at the time of inspection (i.e. missing test cases), a test expert should be invited to the Pull-Request review to explicitly check this item. | ||
| - | ||
| - | ||
| - | ||
| * - REQ_09_01 | ||
| - For stakeholder requirements: Do those cover assumed safety mechanisms needed by the hardware and system? | ||
| - Note that the feature/component requirements also cover safety mechanisms in case those are needed to mitigate failures found during :need:`gd_chklst__safety_analysis` | ||
| - | ||
| - | ||
| - | ||
| * - REQ_09_02 | ||
| - For other requirements: Do the requirements defining a safety mechanism contain the error reaction leading to a safe state? | ||
| - Alternatively to the safe state there could also be "repair" mechanisms. Also do not forget to consider REQ_05_01 for these. | ||
| - | ||
| - | ||
| - | ||
|
|
||
|
|
||
| .. attention:: | ||
| The above checklist entries must be filled according to your component requirements in scope. | ||
| Also the need links mentioned in the checklist must be renamed to PROCESS_<old id> to point to the process documentation. | ||
|
|
||
| The following (valid) requirements are in the scope of this inspection: | ||
|
|
||
| .. needtable:: | ||
| :filter: "component_name" in docname and "requirements" in docname and docname is not None | ||
| :style: table | ||
| :types: comp_req | ||
| :tags: component_name | ||
| :columns: id;status;tags | ||
| :colwidths: 25,25,25 | ||
| :sort: title | ||
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Uh oh!
There was an error while loading. Please reload this page.