Enforcing Application Security Policies
You can use Veracode to enforce consistent application security policies across your entire inventory of applications, both those that you develop and third-party applications. You can use a pre-defined Veracode policy or create your own custom policy to enforce the rules of your organization.
Before getting started with policies, Veracode recommends that you:
- Understand Veracode Levels
- Understand policies
- Review the Veracode default policies
- Understand policy notifications
These are the tasks for configuring and enforcing policies:
- Create a policy
- Set default policies
- Set a policy for an application
- Set custom severities
- Review policy adherence
Setting SCA Policies
You can design policies specifically for rules for Software Composition Analysis (SCA). For more information, see Include SCA Findings in Policy.