Parasoft Logo Search

Discover TÜV-certified GoogleTest with Agentic AI for C/C++ testing!
Get the Details »

WEBINAR

Bridging GoogleTest & Compliance for Safety-Critical Software

Open-source unit testing frameworks like GoogleTest have become the standard for modern C and C++ software development. But for organizations building safety- and security-critical embedded systems, adopting GoogleTest is only the beginning. Demonstrating structural code coverage, requirements traceability, tool qualification, and the compliance evidence needed for functional safety and cybersecurity standards requires more than a traditional open-source testing framework.

Watch this interactive discussion led by Chris Rommel, executive vice president at VDC Research, featuring Arthur Hicken, evangelist, and Ricardo Camacho, director of product, both from Parasoft, as they discuss how engineering organizations can confidently adopt and scale GoogleTest within regulated development environments.

The panel explores:

  • Why GoogleTest is driving embedded C/C++ unit testing
  • The challenges of using GoogleTest in safety-critical development
  • How to achieve structural coverage, traceability, and audit readiness
  • Common compliance gaps in using open-source testing workflows
  • Benefits of TÜV SÜD-certified GoogleTest
  • Extending GoogleTest while preserving developer workflows

Learn practical strategies for modernizing embedded software verification workflows, improving software quality, streamlining compliance, and reducing certification risk, all while continuing to use the open-source tools your developers already know and trust, even as software complexity and AI-assisted development continue to grow.

The Increasing Demands on Software Development

Software has become the defining feature of today’s products, driving innovation across industries. Engineering teams expect software complexity to continue growing, with more than half anticipating at least a 25% increase in internally developed code on their next projects. This isn’t simply more code; it’s a fundamental shift in how software is being developed. Several factors are driving this complexity:

  1. IoT and Edge Computing: Pushing more intelligence into end systems.
  2. Software Integration: Becoming integrators of code from various sources like third-party vendors, open-source components, and prior projects.
  3. AI-Generated Code: Rapidly entering the development pipeline, adding another layer of complexity and governance challenges.

Together, these trends require engineering teams to deliver more software, integrate code from more sources, and produce greater compliance evidence, all while working with the same or fewer resources. The result is growing pressure to adopt more efficient, scalable verification strategies.

The Undeniable Value of Unit Testing

As software complexity grows, effective unit testing becomes even more important. Data shows that projects with mature unit testing practices report over 70% fewer customer-reported defects annually compared to those without. Organizations with mature unit testing practices also report lower-severity defects, reducing remediation effort from an average of 81 person-hours to 51 person-hours per defect.

However, a paradox exists: even with clear evidence of best practices, many organizations veer from established methods when adopting new technologies or facing time pressures. This can lead to projects falling behind schedule, which is particularly costly in the safety-critical space where delays can translate to hundreds of thousands of dollars in operational costs, not to mention lost revenue and certification risks.

This raises an important question: How can organizations continue using modern, open-source unit testing frameworks like GoogleTest while meeting the rigorous verification and compliance requirements of regulated industries?

GoogleTest: The Right Framework—But Only Part of the Solution

GoogleTest has become the preferred unit testing framework for embedded C++ development. Its native C++ support, broad community adoption, seamless CI/CD integration, and open-source licensing make it an excellent choice for modern software teams.

However, organizations developing safety- and security-critical software soon discover that unit testing alone isn’t enough. Meeting the verification and compliance expectations of regulated industries requires additional capabilities that GoogleTest wasn’t designed to provide.

Where Compliance Gaps Commonly Appear

Engineering teams often encounter challenges in four key areas:

  • Structural Code Coverage: GoogleTest does not natively provide statement, branch, or MC/DC coverage, which are often required by safety standards. Add-ons can help but require manual mapping.
  • Requirements Traceability: It doesn’t natively support tracing tests back to specific requirements, necessitating manual management or integration with separate tools.
  • Audit-Ready Reporting: The standard XML or JSON output isn’t sufficient for audits. Comprehensive evidence, including history, version context, and qualification artifacts, is missing.
  • Tool Qualification: GoogleTest doesn’t provide documented evidence that the tool itself performs its intended function correctly, a requirement for standards like DO 330 or IEC 61508.

Without these capabilities, teams often rely on manual processes, disconnected tools, and custom integrations that increase engineering effort and certification risk. Safe software never happens by accident. It’s the outcome of intentional engineering.

Navigating the Path Forward

When an organization identifies a certification gap with their GoogleTest workflow, there are typically three paths:

  1. Migrate Away from GoogleTest: This is highly disruptive, involving rewriting test code, retraining developers, and potentially losing existing integrations. It’s often too costly and time-consuming for established teams.
  2. Self-Qualify GoogleTest: This requires a significant investment in time and expertise to create and maintain qualification artifacts. The work must be repeated for every new GoogleTest version, creating recurring costs and scheduling risks.
  3. Extend GoogleTest with a Compliance-Ready Solution:
    Rather than replacing GoogleTest, many organizations choose to build on their existing investment by adding the capabilities required for safety- and security-critical development. Solutions such as Parasoft C/C++test CT extend GoogleTest with structural code coverage, requirements traceability, audit-ready compliance evidence, and TÜV SÜD-certified GoogleTest packaging that helps simplify tool qualification and certification activities.

This approach enables teams to preserve their existing GoogleTest workflows while making them certification-ready. Instead of starting over, organizations can continue using the tools their developers know and trust while satisfying the verification and compliance expectations of regulated industries.

AI Is Reshaping Software Verification

AI is transforming software development by helping engineers generate code, create tests, and remediate defects faster than ever before. But for safety- and security-critical software, AI doesn’t replace rigorous verification; it makes it even more important. Regardless of how code is created, organizations must still demonstrate structural code coverage, requirements traceability, compliance evidence, and confidence that software meets functional safety and cybersecurity requirements.

Parasoft combines AI-assisted testing with trusted verification technologies, including static analysis, unit testing, code coverage, requirements traceability, and compliance reporting, to help teams improve productivity while maintaining the rigor required for certification. This webinar explores how engineering organizations can confidently embrace AI without compromising software quality, safety, or compliance.

Bringing It All Together

GoogleTest is an excellent unit testing framework, but safety- and security-critical software demands more than unit testing alone. Organizations also need structural code coverage, requirements traceability, compliance evidence, audit-ready reporting, and tool qualification support.

Parasoft C/C++test CT extends existing GoogleTest workflows with TÜV SÜD-certified GoogleTest packaging, structural code coverage, requirements traceability, compliance reporting, AI-assisted testing capabilities, and support for leading functional safety and cybersecurity standards. The result is a modern, certification-ready verification solution that helps teams improve productivity, simplify compliance, and deliver safer, more secure software.