Create Your Agent-Based Scanning Authentication Token for GitLab CI

Veracode Software Composition Analysis

By default, the agent you create is only visible to members of the workspace in which you created the agent. To allow visibility, invite teams to your workspace.

  1. In the Veracode Platform, select Scans & Analysis > Software Composition Analysis.
  2. Click the Agent-Based Scan tab.
  3. Select a workspace.
  4. Click Agents > Actions > Create > Bitbucket Pipelines.
    Note: The installation process for Bitbucket Pipelines mirrors the GitLab CI installation process for agent-based scanning.
  5. Click Create Agent & Generate Token.
  6. Copy the value in the token field.
    You use the token to authenticate with Veracode SCA during scans.