Jenkins : Veracode Scanner Plugin

Plugin Information

Distribution of this plugin has been suspended due to unresolved security vulnerabilities, see below.

The current version of this plugin may not be safe to use. Please review the following warnings before use:


This plugin provides a post build action for submitting files for scanning to veracode.


*Warning* - This plugin has a dependency on Java 7, so the Jenkins instance that you're installing the plugin into will need to be running in a Java 1.7+ environment to function properly.   

*Warning* - This plugin is not officially supported by Veracode.  If you are experiencing issues or have questions, please comment here or report an issue on Github.  

To setup a job to submit artifacts to Veracode for a static scan, you'll first need to provide the credentials and default values in Manage Jenkins -> Configure System:

Then for each job that you want to initiate scans, add the "Submit Artifiacts For Veracode Scan" post build action to that job's configuration:

Provide a comma delimited list of files that you want to scan, the name of the application in Veracode, and override any default scan values: