If you are running a scan in a Windows environment and do not want to use Chocolatey to install the agent, you can use PowerShell.
- In the Veracode Platform, select Scans & Analysis > Software Composition Analysis.
- Click the Agent-Based Scan tab.
- Select a workspace.
- Click Agents > Actions > Create > Windows.
- Click the PowerShell tab.
- Click Create Agent & Generate Token.
- Set the $Env:SRCCLR_API_TOKEN environment variable to the authentication token you just generated.
-
In your PowerShell terminal, set execution policy to
AllSigned. You may need to run this command to set
the execution policy, since PowerShell does not permit scripts to run by
default:
Set-ExecutionPolicy AllSigned -Scope Process -Force
-
Run this command to download the script:
$ProgressPreference = "silentlyContinue"; iex ((New-Object System.Net.WebClient).DownloadString('https://download.sourceclear.com/ci.ps1'))
-
Scan repositories with one of these commands.
- To start scanning public repositories:
srcclr scan --url https://github.com/srcclr/example-ruby
- To clone and scan local repositories:
srcclr scan FILE_PATH
- To start scanning public repositories: