Use sandboxes with Veracode Static for Eclipse
You can create a sandbox into which you upload your application files from within Eclipse. You can then scan your application from the sandbox.
Before you begin:
You must have the Upload and Scan API role or Submitter role. To obtain detailed findings information in your scan results, the builder you use to package your code must generate debug symbol information.
To complete this task:
-
In your IDE, select Veracode > Upload and Scan.
-
If prompted, enter your API credentials. Select Store username and password so that you only have to enter your credentials one time.
-
From the Application dropdown menu, select an application.
-
In the Scan Type field, select Sandbox Scan.
-
Click Create Sandbox and enter a name for the sandbox.
noteIf you do not see the Create Sandbox button, contact Veracode Technical Support to enable this feature for your account.
-
In the Workspace Files table, click the browse icon to select the files to upload from your current projects. Click Add to select any files not associated with a current project.
-
Click Upload and, then, click Yes to confirm that you want to proceed with the upload.
-
Click Yes to go directly to the Veracode prescan process after the upload completes. If you do not want the full scan to continue automatically, click No. Then, click Begin Prescan at the top of the Upload Files table.
-
After the prescan completes, click View Prescan Results to review the results.