Azure DevOps

Use the following integrations to add security scanning to your Azure DevOps pipelines.

Azure DevOps Workflow Integration: embed Veracode Repository Scanning into your pipelines. Run Static Analysis, SCA, and Container Security scans, and review the results in Azure DevOps.
Azure DevOps Extension: install the extension and configure tasks to add Static Analysis scanning to your pipelines, and import scan results into Azure DevOps as work items. The scan results include findings from Static Analysis, SCA, and Dynamic Analysis scans of the same application.

note

Veracode APIs and integrations require access to specific region domains, depending on your Veracode account region. Contact your IT team to ensure that the correct domains for your region are on the allowlist. Also ensure one-way communication on port 443 to the REST API domain. For details, see the complete list of domains and IP addresses to add to your allowlist.

Did you find this helpful?