- 20 Mar 2025
- 1 Minute to read
- Print
- DarkLight
Veracode
- Updated on 20 Mar 2025
- 1 Minute to read
- Print
- DarkLight
Veracode enables organizations to identify security issues in application code, assess the overall security of applications, and learn about security testing. For more information, refer to Veracode’s official documentation.
Integration Method: API
Tables: Vulnerability Finding (2002)
This integration supports the following events.
Event | Description |
---|---|
Findings | Retrieve a list of all alerts. |
This integration supports the following versions.
Veracode API Version | v1 & v2 |
Note:
Veracode is a continuously updated cloud service. As for this document preparation, the latest release was on Feb 19, 2025.
Prerequisites
Access to the Veracode Platform.
Access to the DataBee console.
Configuration Overview
Generate API credentials in the Veracode Platform.
Add the Veracode data feed in the DataBee console with the below parameters.
DataBee Parameter
Veracode Parameter
Integration Key
Secret Key
Veracode Configuration
Create API Credentials
Log in to the Veracode console.
Click on API Credentials button.
Click on Generate API Credentials.
Copy generated ID and Secret Key.
Note:
Make sure to copy and save the secrets. Additionally, users need to re-generate the credentials once they expire.
DataBee Configuration
Login to the DataBee UI, navigate to Data > Data Feeds and click the Add New Data Feed button.
Search for the Veracode and click it as shown below.
Click on the API Ingest option for collection method.
Enter feed contact information and click Next.
In the configuration page, confirm the following:
Authorization Method: HMAC Auth
API URL: this is the base URL that DataBee will interact with.
Integration key: paste ID generated earlier.
Secret Key: paste Secret Key generated earlier.
Event Types: preselected for all the event types that integration pulls.
Click Submit.
Troubleshooting Tips
If you are facing an unauthorized (401) or forbidden (403) error, it might be due to incorrect credentials. Ensure that the ID and Secret Key are pasted correctly. Also, verify that the API credentials have not expired. If needed, generate new credentials. For more details, refer to the official documentation.