A collection of scripts to interact with Veracode's API
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
shell
.gitignore
LICENSE.md
README.md

README.md

Warning: This script won't work out of the box. It will require settings or some customization.

shell/veracode.sh directory [version]

Arguments:

  • directory: Required. Directory path containing the files you wish to submit in your scan (not recursive)
  • version: Optional. Name of the build version. Will be seen in reports. Default: date "+%Y-%m-%d %T"

This script will do the following:

  1. Check if a build was left in an incomplete state, if so delete it
  2. Create a new build
  3. Upload files
  4. Initiate pre-scan of files
  5. Poll for pre-scan completion
  6. Initate scan (will attempt to scan as many of the files as possible)
  7. Poll for scan completion
  8. Download the reports (detailed PDF, detailed XML, and summary PDF)
  9. Email the reports

Dependancies:

  • curl
  • mailx