Docs
Docs

Veracode Integration

Add Veracode vulnerability checks to your Service Maturity rubric.

Suggest Edits

Add a Veracode Integration

  1. In the OpsLevel app, Click Integrations in the left sidebar.
  2. Click on the + New Integration button.
  3. Click the Veracode tile to add the integration.

Create a Check

  1. Navigate to the Rubrics sub menu under the Service Health menu in OpsLevel
  2. Hover over the cell that corresponds to the level and category you want your check to live in and click the + Add Check button.

https://assets.website-files.com/62f57683bbbfc131fb68b4d7/6306beb49d86f2548f862b8e_create_check.png

  1. Select the Veracode integration you created from the Integration dropdown
  2. Choose one of the Check Templates from the dropdown.

https://assets.website-files.com/62f57683bbbfc131fb68b4d7/6333a4e9075837e634076a3f_Screen Shot 2022-09-27 at 8.30.26 PM.png

  1. We will populate the Service Specifier field, which we use to determine what service to run the check for, and the Success Condition field, which we use to determine if the check should pass or fail. We also provide a sample payload to test the check.

https://assets.website-files.com/62f57683bbbfc131fb68b4d7/6333a5e3b6958a98547cda68_Screen Shot 2022-09-27 at 8.38.36 PM.png

Send payload to OpsLevel

Sending the scan results to OpsLevel can be done with a webhook. You can read more about how to setup a Veracode webhook in these docs. You will need to have the webhook send the payload to the integration URL you created.

https://assets.website-files.com/62f57683bbbfc131fb68b4d7/6333aed7e7e91f5b0644db66_Screen Shot 2022-09-27 at 9.16.04 PM.png

To learn more about the Veracode, you can read their docs.

Updated almost 2 years ago