Use sandboxes with Veracode Static for Eclipse
You can create a sandbox into which you upload your application files from within Eclipse. You can then scan your application from the sandbox.
Before you begin:
You must have the Upload and Scan API role or Submitter role. To obtain detailed findings information in your scan results, the builder you use to package your code must generate debug symbol information.
To complete this task:
-
In your IDE, select Veracode > Upload and Scan.
-
If prompted, enter your API credentials. Select Store username and password so that you only have to enter your credentials one time.
-
From the Application dropdown menu, select an application.
-
In the Scan Type field, select Sandbox Scan.
-
Select Create Sandbox and enter a name for the sandbox.
noteIf you do not see the Create Sandbox button, contact Veracode Technical Support to enable this feature for your account.
-
In the Workspace Files table, select the browse icon to select the files to upload from your current projects. Select Add to select any files not associated with a current project.
-
To confirm that you want to proceed with the upload, select Upload. Then, select Yes.
-
To go directly to the Veracode prescan process after the upload completes, select Yes. If you do not want the full scan to continue automatically, select No. Then, select Begin Prescan at the top of the Upload Files table.
-
To review the results of the prescan, select View Prescan Results.