The world is evolving rapidly, and software is the core of modern societies across vast domains (e.g., transport). Current software development usually prioritizes fast delivery over security, which potentially brings in vulnerabilities and unsecure applications. C-SARTIFY aims at devising a framework for the continuous security assurance to enhance security/trusts of software, hardware and integrated systems.