CLI updates
The updates on this page apply to the Veracode CLI. Updates that apply to specific Veracode regions show a region icon.
For updates specific to Veracode Fix, such as language and CWE support, see Fix updates.
July 25, 2024
Veracode CLI v2.28.0
This update includes the following improvements:
- The
veracode static scan
command has improved error messages that indicate whether API credentials are missing or invalid. - The
veracode configure
command now correctly uses directory paths that contain environment variables. - General performance improvements.
July 2, 2024
Veracode CLI v2.27.1
This update includes the following improvements to the veracode package
command:
- Support for C/C++ Windows, C/C++ Linux, COBOL, and Perl.
- Support for multiple target frameworks defined in the
*.csproj
,Directory.Packages.props
, andDirectory.Build.props
files in .NET projects. - Improved language support for .NET.
June 28, 2024
Veracode CLI v2.26.0
This update includes the following improvements to the veracode package
command:
- Support for .NET Framework 4.6-4.8.
- Support for restoring .NET projects with
<TargetFramework>
. - Improved language support for Flutter, Android, PHP, and .NET.
- More meaningful
--debug
messages if the command is not able to locate required build or packaging tools.
June 18, 2024
Veracode CLI v2.25.0
This update includes the following improvements
- The
veracode package
andveracode scan
commands are now supported on alpine-based environments. - Improved Java, Javascript, and Python language support for the
veracode package
command.
June 12, 2024
Veracode CLI v2.24.0
The veracode static
command now provides improved command output.
June 6, 2024
Veracode CLI v2.23.0
The veracode static
command output now only displays scannable modules once.
June 5, 2024
Veracode CLI v2.22.0
This update adds the veracode dynamic
command. You use this command to run a DAST Essentials dynamic analysis, check the status of the analysis, and output the results.
May 28, 2024
Veracode CLI v2.21.0
The veracode package
command now supports Android, React Native, Dart, and Flutter.
May 6, 2024
Veracode CLI v2.18.0
This update includes the following improvements to the veracode package
command:
- Support for streaming log messages.
- Improved language support for .NET and Python.
April 15, 2024
Veracode CLI v2.16.0
This update includes the following improvements:
- The
veracode package
command now supports iOS, in addition to existing support for Java, JavaScript, .NET, Python, PHP, Scala, Kotlin, Go, and Ruby on Rails. You use this command to auto-package your applications for Static Analysis and Software Composition Analysis (SCA) upload scans. - The packaged artifacts use a Veracode approved filename format.
- Improved error messaging.
- The
veracode package
command output now displays the installed CLI version.
March 29, 2024
Fix flaws in multiple files in a directory
The veracode fix
command now provides suggested fixes for a directory of source files, in addition to a single source file. You can fix flaws in multiple files as a batch, without having to rescan your code each time you apply a fix.
March 27, 2024
Veracode CLI v2.14.0
The veracode package
command now supports application packaging for the following languages:
- .NET
- Go
- Kotlin
- PHP
- Ruby on Rails
- Scala
February 5, 2024
New commands for reporting on repository contributors
The Veracode CLI now includes the following commands:
veracode repository add
: create an Excel file that lists all accessible repositories from which to import contributing developers.veracode repository report
: create a report that lists all contributing developers for each repository.
January 18, 2024
The Veracode CLI now supports auto-packaging for Veracode Static Analysis
The Veracode CLI now supports Static Analysis auto-packaging for Java, JavaScript, and Python. The package
command removes manual packaging steps to streamline your application security tests.
January 9, 2024
Install the CLI on Windows with a PowerShell script
You can now install the Veracode CLI on Windows with a PowerShell script.
October 26, 2023
The Veracode CLI now supports Windows
You can now install the Veracode CLI on Windows with Chocolatey.
October 5, 2023
Veracode Fix is now available in the European Region
Veracode Fix is now fully supported in the European Region.
June 28, 2023
Introducing Veracode Fix
The veracode fix
command is a new generative AI feature of the Veracode CLI. It uses the results from a Veracode Pipeline Scan to generate suggested code fixes that you can apply to flaws in your application source code. This feature is currently only available in the Commercial Region. To get started, see the quickstart.
December 30, 2022
Released Veracode Container Security
Veracode Container Security is available. Container Security is a feature of the Veracode CLI that does the following:
- Scans for container vulnerabilities
- Scans for infrastructure as code misconfigurations
- Scans for improperly stored secrets
- Helps developers secure their cloud native applications
For more information about Veracode Container Security, contact your Veracode account representative.