Upload and scan binaries from within Eclipse
You can upload binaries of your applications to Veracode for Static Analysis from within Eclipse.
Before you begin:
You must have the Upload and Scan API role or Submitter role. To obtain detailed findings information in your scan results, the builder you use to package your code must generate debug symbol information.
To complete this task:
- In Eclipse, select Veracode > Upload and Scan.
- If prompted, enter your API credentials. Select the checkbox to store your credentials so that you only have to enter them once.
- In the Upload and Scan window, from the Application dropdown menu, select the application for which you want to upload binaries. To add an application, select Add Application and enter the required information such as policy control and organization information.
- After adding an application, go to the Upload and Scan window and select Policy Scan for Scan Type.
- Select Create Scan.
- In the Create Scan window, enter the name for the new scan and, optionally, the lifecycle stage.
- Select Create.
- In the Workspace Files table, use the browse icon to select the files you want to upload from your current projects.
- Select Add to select any files not associated with a current project.
- Select Upload.
You cannot upload binaries if Veracode is currently scanning an application. After the scan results are available, you can add more files.
Veracode expects the name of the uploaded file to be the same between scans of the same application. However, because filenames can change between builds of the same code, you can change the filename before uploading to keep the name consistent. If Veracode indicates that the filenames are not the same, select the New Filename column to rename the file, so that it matches the previous name for the same file.
- When prompted to confirm, select Yes to continue the upload.
- Select Yes to go directly to the Veracode prescan process after the upload completes. If you do not want the full scan to continue automatically, select No.
- Select Begin Prescan at the top of the Upload Files table. Files you have previously uploaded to the selected scan already appear in the Uploaded Files section.
- To delete previously uploaded files, select the specific files and select Delete. You cannot delete files that Veracode is currently scanning until the scan results are available. The status of a scan always appears in the top bar of the window.
- When the prescan is complete, select View Prescan Results at the top of the Upload Files table. Veracode notifies you when your scan is complete and results are available.