Collection of open source projects that include automation of common Veracode Platform tasks, new integrations, HMAC signing libraries, etc

Simple auto-packager for JavaScript/TypeScript (i.e., Node, Angular, React, Vue) that creates a zip to upload for Veracode Static Analysis

Python helper library for working with the Veracode APIs. Handles retries, pagination, and other features of the modern Veracode REST APIs.

Retrieves findings with APPROVED mitigations from an application's policy scan (or sandbox) and creates a baseline file for Pipeline Scan. Mitigations in a "proposed" state will not be retrieved.

Unofficial list of interesting projects that build on the Veracode APIs.

Veracode Scan Health

Exemplos de código e tutoriais para implementações Veracode

Copies mitigations from one Veracode profile to another if it's the same flaw based on the following flaw attributes: issueid, cweid, type, sourcefile, and line. The script will copy all proposed and accepted mitigations for the flaw. The script will skip a flaw in the copy_to build if it already has an accepted mitigation.

Veracode Scan Compare

A working repository of custom script integrations for veracode

Veracode Gradle Plugin

Get a summary of all the information about dynamic flaws for an application to support remediation.

Identify Veracode application profiles with one or more static scans in an incomplete state.

CLI tool to automatically submit Github repos for scanning by Veracode platform

Veracode HMAC Authentication for Go

Helps you to enumerate active committers in specified GitHub repositories.

Produces a PDF report summarizing the security state of a Collection in the Veracode Platform.

.NET Core NuGet Veracode API Wrapper. If your planning to work with Veracode in .NET this will make your life easier.

Veracode as configuration/GitOps tool for working with veracode through configuration