About Kotlin SCA Agent-Based Scanning

Veracode Software Composition Analysis

You can find vulnerabilities in your Kotlin repositories using Veracode Software Composition Analysis agent-based scanning. You can run agent-based scans of Maven and Gradle repositories using the command-line interface or include the scans in your continuous integration pipelines.

The requirements for running a scan and reviewing results for Kotlin repositories are the same as the requirements for Java repositories. See About Java SCA Agent-Based Scanning.

For packaging instructions for Veracode Static Analysis and Veracode SCA upload scans, see Packaging Kotlin Applications.