Skip to main content

Mitigation and Comments XML APIs Quick Reference

This table lists the XML API calls for mitigating and commenting on findings. For more detailed information, see the topic for a specific call.

Veracode strongly recommends that you use the REST APIs. For new integrations, always use the REST APIs.

XML API CallDescriptionRequired ParametersOptional ParametersScan TypeEquivalent REST API Call
getmitigationinfo.doRetrieves all the information on actions that users have performed on a list of one or more flaws in the specified build.build_id, flaw_id_list StaticGET /appsec/v2/applications/{application_guid}/findings?include_annot=true
updatemitigationinfo.doPerforms various actions on a discovered flaw, such as commenting on a flaw, proposing a mitigation action, and rejecting or accepting a mitigation action.build_id, action, comment, flaw_id_list StaticPOST /appsec/v2/applications/{application_guid}/annotations