Skip to main content

Greenlight plugins

note

The Greenlight plugins only support Static Analysis scans. To run Static Analysis and Software Composition Analysis scans, and use Veracode Fix to apply suggested code patches to flaws, Veracode recommends you use the Veracode Scan plugins and extensions.

Veracode Greenlight, which is also called IDE Scan, finds security defects in your code in seconds, so you can fix the findings directly in your IDE. Instant detection discovers issues early and reduces costs.

Greenlight is not available in the European Region.

Veracode Greenlight scans files or small packages and displays the results in your IDE as the code line level. Developers can test software frequently and find security-related defects early in the development cycle. Veracode Greenlight also provides positive feedback to developers, which list coding best practices that developers can use to avoid introducing security defects.

In addition to using Veracode Greenlight, Veracode recommends that you perform a full static analysis scan using the Veracode Platform or the Veracode plugin for your IDE to achieve comprehensive coverage, actionable results, and policy-level reporting to determine application production readiness.

note

Veracode APIs and integrations require access to specific Region Domains, depending on the region for your Veracode account. Contact your IT team to ensure the correct domains for your region are on the allowlist for your organization. Also, ensure that there is one-way communication on port 443 to the domain for the REST APIs. Refer to the complete list of domains and IP addresses to add to your allowlist.

Supported IDEs