You can upload binaries of your applications to Veracode for Static Analysis from within Eclipse.
Before you begin:
You must have the Upload and Scan API role or Submitter role. To obtain detailed findings information in your scan results, the builder you use to package your code must generate debug symbol information.
To complete this task:
In Eclipse, select Veracode > Upload and Scan.
If prompted, enter your Veracode API credentials. Select the checkbox to store your credentials so that you only have to enter them once.
In the Upload and Scan window, from the Application dropdown menu, select the application for which you want to upload binaries. To add an application, click Add Application and enter the required information such as policy control and organization information.
After adding an application, go to the Upload and Scan window and select Policy Scan for Scan Type.
Click Create Scan.
In the Create Scan window, enter the name for the new scan and, optionally, the lifecycle stage.
In the Workspace Files table, use the browse icon to select the files you want to upload from your current projects.
Click Add to select any files not associated with a current project.
You cannot upload binaries if Veracode is currently scanning an application. After the scan results are available, you can add more files.
Veracode expects the name of the uploaded file to be the same between scans of the same application. However, because filenames can change between builds of the same code, you can change the filename before uploading to keep the name consistent. If Veracode indicates that the filenames are not the same, click the New Filename column to rename the file, so that it matches the previous name for the same file.
When prompted to confirm, click Yes to continue the upload.
Click Yes to go directly to the Veracode prescan process after the upload completes. If you do not want the full scan to continue automatically, click No.
Click Begin Prescan at the top of the Upload Files table. Files you have previously uploaded to the selected scan already appear in the Uploaded Files section.
To delete previously uploaded files, select the specific files and click Delete. You cannot delete files that Veracode is currently scanning until the scan results are available. The status of a scan always appears in the top bar of the window.
When the prescan is complete, click View Prescan Results at the top of the Upload Files table. Veracode notifies you when your scan is complete and results are available.