Veracode
Veracode System Scanning integration
This CLI is able to sync asset, scans and vulnerabilities from a folder containing Veracode files.
veracode
- Import a folder of Veracode.xlsx files and sync assets, vulnerabilities and scans to RegScale.
Veracode Processing Workflow
The CLI will process each Veracode file and load assets, vulnerabilities and scans to RegScale.
import_veracode
Import Veracode.xlsx scans and assets to RegScale
Required parameters
-
regscale_ssp_id
The ID number from RegScale of the System Security Plan, required. -
folder_path
The full folder path where the Veracode.xlsx files are located.
Additional Information:
The CLI provides detailed logging throughout the process to indicate progress and to provide troubleshooting in case of issues.
File Format
Below are the expected columns of a Veracode file:
Header Name | Required |
---|---|
ID | |
Sev | |
CWE ID & Name | |
Module | |
Source | Yes |
Example Commands
Import Veracode scans to SSP #16 in RegScale using the files located in the veracode_scans folder.
regscale veracode import_veracode --regscale_ssp_id 16 --folder_path /home/bryan/Sync/veracode_scans
NOTE: See All Scanner Integrations for information about how this updates Issues/POAMs
Updated about 1 month ago