Skip to main content

Mitigation and Comments XML API quick reference

This table lists the XML API calls for mitigating and commenting on findings. For more detailed information, see the topic for a specific call.

Veracode strongly recommends that you use the REST APIs. For new integrations, always use the REST APIs.

XML API CallDescriptionXML API ParametersScan Type
getmitigationinfo.do

REST equivalent:
GET /appsec/v2/applications/{application_guid}/findings?include_annot=true
Retrieves all the information on actions that users have performed on a list of one or more flaws in the specified build.build_id
flaw_id_list
Static
updatemitigationinfo.do

REST equivalent:
POST /appsec/v2/applications/{application_guid}/annotations
Performs various actions on a discovered flaw, such as commenting on a flaw, proposing a mitigation action, and rejecting or accepting a mitigation action.build_id
action
comment
flaw_id_list
Static