About the Mitigation and Comments API Calls

Veracode APIs

This table lists the Mitigation and Comments API calls you can use for automating tasks for mitigating and commenting on findings.

The REST API equivalents of these calls are available with the Annotations API and the Findings API. Veracode strongly recommends that you use the REST APIs. For new integrations, always use the REST APIs.

Table. Mitigation and Comments API Tasks
API Call Description
getmitigationinfo.do Retrieves all the information on actions that users have performed on a list of one or more flaws in the specified build.
updatemitigationinfo.do Performs various actions on a discovered flaw, such as commenting on a flaw, proposing a mitigation action, and rejecting or accepting a mitigation action.