About HTTP Support

Getting Started with Veracode API Scanning

API Scanning supports HTTP/1.1 and HTTP/1.0 traffic. If your API requires HTTP/2.0, you cannot use API Scanning. When creating the HAR file of a specification, the scan engine downcasts HTTP/2.0 API specifications to HTTP/1.1. If a HAR file defines HTTPS, the scan engine interprets the value of the httpVersion property to be HTTP/1.1.