Skip to main content

Create an application profile

You must create an application profile before you can submit a scan to Veracode.

You can also create an application profile with the Applications API.


If a third party submits the scans for your organization, see Request a third-party application scan for instructions on creating an application.

Before you begin:

You must have the Creator or Security Lead role.

To complete this task:

  1. In the Veracode Platform, select My Portfolio > Applications.

  2. Click Add New Application.

  3. Enter the application name.

  4. Optionally, enter a description.

  5. Select the business criticality of this application to your organization.

    The business criticality determines the default policy for the application. You can change the business criticality later, if necessary, by editing the profile.

  6. Select a policy from the dropdown menu if you do not want to use the default policy.

  7. Select the business unit that manages this application.

    If the business unit does not yet exist on the menu, an Administrator must add it.

  8. If you belong to any teams, click Edit below the list of teams to specify which teams can access the application.

  9. Enter the name and email address of the business owner.

    The business owner is the person responsible for managing the application and who receives all email notifications about the application.

  10. Select your application settings. The available settings vary depending on your role, account settings, and Veracode subscription.

    • For Static Scan Dependencies, select whether you can select dependent modules as top-level modules when configuring a static scan.
    • For Software Composition Analysis, select whether to enable Veracode Software Composition Analysis scans of this application.
    • For Next-Day Consultations, select whether you can schedule next-day consultation calls with Veracode for this application.
  11. If you want to use tags to organize the application profile, enter comma-separated values in the Tags field.

  12. If you want to set a custom name for the application in the Archer data feed, enter an Archer application name.


    This field is only available to Security Leads.

  13. Enter values for up to 25 custom fields to add any other metadata on which you want to track or analyze this application.

  14. Click Submit.