Mitigation and Comments XML APIs Quick Reference

Veracode APIs

This table lists the XML API calls for mitigating and commenting on findings. For more detailed information, see the topic for a specific call.

Veracode strongly recommends that you use the REST APIs. For new integrations, always use the REST APIs.

XML API Call Description Required Parameters Optional Parameters Scan Type Equivalent REST API Call
getmitigationinfo.do Retrieves all the information on actions that users have performed on a list of one or more flaws in the specified build. build_id, flaw_id_list   Static GET /appsec/v2/applications/{application_guid}/findings?include_annot=true
updatemitigationinfo.do Performs various actions on a discovered flaw, such as commenting on a flaw, proposing a mitigation action, and rejecting or accepting a mitigation action. build_id, action, comment, flaw_id_list   Static POST /appsec/v2/applications/{application_guid}/annotations