public final class MitigationAPIWrapper extends AbstractAPIWrapper
Provides access to the Veracode Mitigation API. The Mitigation and Comments API enables you to integrate flaw comments and mitigation workflow tasks into IDEs and bug tracking systems. You can mitigate a flaw, accept or reject a mitigation action, or you can comment on a proposed mitigation. In addition, you can view all comments and mitigation actions any user has performed on a flaw.
To use the Mitigation and Comments API, you must have either a:
a) Veracode API account with the Mitigation API role
b) Veracode human user account with the following roles to do specific tasks:
*Reviewer or Security Lead: To view all actions performed on a flaw, to submit proposed mitigations, or to comment on proposed mitigations.
*Mitigation Approver and either Reviewer or Security Lead: To accept or reject proposed mitigations.
Modifier and Type | Field and Description |
---|---|
static java.lang.String |
GET_MITIGATION_INFO_URI |
static java.lang.String |
UPDATE_MITIGATION_INFO_URI |
BASE_ADDRESS
Constructor and Description |
---|
MitigationAPIWrapper() |
Modifier and Type | Method and Description |
---|---|
java.lang.String |
getMitigationInfo(java.lang.String build_id,
java.lang.String flaw_id_list)
Retrieves all the information on actions that users have performed on a
list of one or more flaws in the specified build.
|
java.lang.String |
updateMitigationInfo(java.lang.String build_id,
java.lang.String action,
java.lang.String comment,
java.lang.String flaw_id_list)
Enables you to perform several actions on a list of one or more flaws in
the specified build.
|
setUpApiCredentials, setUpCredentials, setUpProxy, setUpProxy, setUpProxy
public static final java.lang.String GET_MITIGATION_INFO_URI
public static final java.lang.String UPDATE_MITIGATION_INFO_URI
public java.lang.String getMitigationInfo(java.lang.String build_id, java.lang.String flaw_id_list) throws java.io.IOException
Retrieves all the information on actions that users have performed on a list of one or more flaws in the specified build.
Calls this URL: https://analysiscenter.veracode.com/api/getmitigationinfo.do Schema File: https://analysiscenter.veracode.com/resource/mitigationinfo.xsd
build_id
- Required. A String that represents an Integer value.flaw_id_list
- Required. A String that represents an Integer value. The flaw
ID is available on the flaw viewer page in the Veracode
platform.java.io.IOException
public java.lang.String updateMitigationInfo(java.lang.String build_id, java.lang.String action, java.lang.String comment, java.lang.String flaw_id_list) throws java.io.IOException
Enables you to perform several actions on a list of one or more flaws in the specified build. These actions include commenting on a flaw, proposing a mitigation action, and rejecting or accepting a mitigation action.
Calls this URL: https://analysiscenter.veracode.com/api/updatemitigationinfo.do Schema File: https://analysiscenter.veracode.com/resource/mitigationinfo.xsd
build_id
- Required. A String that represents an Integer value.action
- Required. Possible enum values are comment, fp, appdesign,
osenv, netenv, rejected, accepted.comment
- Required. The comment string associated with the action. Limit
of 1024 characters.flaw_id_list
- Required. The list is a comma-separated series of one or more
flaw IDs available in the flaw viewer page in the Veracode
platform.java.io.IOException