{"type":"doc","content":[{"type":"layoutSection","content":[{"type":"layoutColumn","attrs":{"width":66.66},"content":[{"type":"paragraph","content":[{"text":"ModelOp Center seamlessly integrates with existing code scanning and security systems, such as Veracode, to allow enterprises to leverage existing IT investments.","type":"text"}]},{"type":"paragraph","content":[{"text":"Table of Contents","type":"text","marks":[{"type":"strong"}]}]},{"type":"extension","attrs":{"layout":"default","extensionType":"com.atlassian.confluence.macro.core","extensionKey":"toc","parameters":{"macroParams":{},"macroMetadata":{"macroId":{"value":"ff163f53-b5a6-4517-be43-f933de0c7607"},"schemaVersion":{"value":"1"},"title":"Table of Contents"}},"localId":"f792d477-3757-4489-be5d-2d1e543bac5c"}}]},{"type":"layoutColumn","attrs":{"width":33.33},"content":[{"type":"paragraph"}]}]},{"type":"heading","attrs":{"level":1},"content":[{"text":"Introduction","type":"text"}]},{"type":"paragraph","content":[{"text":"ModelOp Center provides the ability to integrate with Veracode to enable automated code scanning of registered models within ModelOp Center","type":"text"}]},{"type":"heading","attrs":{"level":1},"content":[{"text":"Veracode Integration Setup","type":"text"}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Prerequisites","type":"text"}]},{"type":"paragraph","content":[{"text":"This guide assumes the following prerequisites","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"your Veracode username stored in either ","type":"text"},{"text":"VERACODE_USERNAME","type":"text","marks":[{"type":"code"}]},{"text":"in your ","type":"text"},{"text":"secrets/secrets.json","type":"text","marks":[{"type":"code"}]},{"text":"or in the Spring property ","type":"text"},{"text":"mlc.veracode-task-monitor.username","type":"text","marks":[{"type":"code"}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"your Veracode password stored in either ","type":"text"},{"text":"VERACODE_PASSWORD","type":"text","marks":[{"type":"code"}]},{"text":"in your ","type":"text"},{"text":"secrets/secrets.json","type":"text","marks":[{"type":"code"}]},{"text":"or in the Spring property ","type":"text"},{"text":"mlc.veracode-task-monitor.password","type":"text","marks":[{"type":"code"}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"the Spring property ","type":"text"},{"text":"mlc.process.global.veracodeAppid","type":"text","marks":[{"type":"code"}]},{"text":" is available and contains your Veracode application id","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"the variable","type":"text"},{"text":"VERACODE_BUILD_ID_FROM_JENKINS","type":"text","marks":[{"type":"code"}]},{"text":" is set and contains the build id of the Jenkins process that initiated the Veracode build we will be looking for","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"a running Veracode process, invoked from Jenkins","type":"text"}]}]}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Task variables","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"APP_ID","type":"text","marks":[{"type":"code"}]},{"text":" - Veracode app id","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"SANDBOX_ID","type":"text","marks":[{"type":"code"}]},{"text":" - Veracode sandbox id","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"SANDBOX_NAME","type":"text","marks":[{"type":"code"}]},{"text":" - Veracode sandbox name","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"VERACODE_BUILD_ID_FROM_JENKINS","type":"text","marks":[{"type":"code"}]},{"text":" - the build id of the Jenkins process that initiated the Veracode build","type":"text"}]}]}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Spring properties","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"http.proxyHost","type":"text","marks":[{"type":"code"}]},{"text":"is for a proxy host and defaults to null","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"http.proxyPort","type":"text","marks":[{"type":"code"}]},{"text":"is for a proxy port and defaults to null","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"mlc.veracode-task-monitor.poll-rate","type":"text","marks":[{"type":"code"}]},{"text":" specifies how often (in milliseconds) to check for Veracode tasks. The default is 5000 milliseconds","type":"text"}]}]}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Veracode Task","type":"text"}]},{"type":"paragraph","content":[{"text":"At a high level, we want our Veracode integration to begin shortly after the Veracode process is running, and then the MLC will poll until a summary report is found. To get a summary report the Veracode task","type":"text"}]},{"type":"orderedList","attrs":{"order":1},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Retrieves the task variables from above","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Using the ","type":"text"},{"text":"APP_ID","type":"text","marks":[{"type":"code"}]},{"text":", retrieves a list of sandboxes","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Finds the sandbox that matches the ","type":"text"},{"text":"SANDBOX_ID","type":"text","marks":[{"type":"code"}]},{"text":" or ","type":"text"},{"text":"SANDBOX_NAME","type":"text","marks":[{"type":"code"}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Using the ","type":"text"},{"text":"SANDBOX_ID","type":"text","marks":[{"type":"code"}]},{"text":" from the matching sandbox, retrieves a list of builds","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Finds the Veracode build that matches the ","type":"text"},{"text":"VERACODE_BUILD_ID_FROM_JENKINS","type":"text","marks":[{"type":"code"}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Retrieves the summary report using the id from the matching Veracode build","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Given a non-null policy compliance status, saves the summary report to the ","type":"text"},{"text":"SUMMARY_REPORT","type":"text","marks":[{"type":"code"}]},{"text":"field","type":"text"}]}]}]},{"type":"paragraph"},{"type":"heading","attrs":{"level":1},"content":[{"text":"Example MLC Integration with Veracode","type":"text"}]},{"type":"paragraph","content":[{"text":"The Veracode MLC integration occur after the initial Jenkins job has completed and the Veracode job has been invoked. The task will wait until a summary report is found.","type":"text"}]},{"type":"paragraph","content":[{"text":"For example:","type":"text"}]},{"type":"mediaSingle","attrs":{"layout":"align-start","width":50.0},"content":[{"type":"media","attrs":{"width":751,"id":"d77d36fa-562a-4687-87a9-ae96478ec5fa","collection":"contentId-1216284991","type":"file","height":209}}]},{"type":"heading","attrs":{"level":1},"content":[{"text":"Sample responses","type":"text"}]},{"type":"paragraph","content":[{"text":"This is a sample response for getting a list of sandboxes","type":"text"}]},{"type":"codeBlock","content":[{"text":"\n\n\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\n\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\t\n\t\n","type":"text"}]},{"type":"paragraph"},{"type":"paragraph","content":[{"text":"This is a sample response for getting a list of builds","type":"text"}]},{"type":"codeBlock","content":[{"text":"\n\n\t\n\t\n\t\n","type":"text"}]},{"type":"paragraph"},{"type":"paragraph","content":[{"text":"Finally, here is a sample summary report response","type":"text"}]},{"type":"codeBlock","content":[{"text":"\n\n\t\n\t\t\n\t\t\t\n\t\t\n\t\n\t\n\t\n\t\n\t\t\n\t\n\t\n\t\n\t\n\t\n\t\n\t\t\n\t\n\t\n\t\t\n\t\n","type":"text"}]},{"type":"paragraph"},{"type":"paragraph"},{"type":"layoutSection","content":[{"type":"layoutColumn","attrs":{"width":66.66},"content":[{"type":"heading","attrs":{"level":3},"content":[{"text":"Related Articles","type":"text","marks":[{"type":"strong"}]}]},{"type":"paragraph"}]},{"type":"layoutColumn","attrs":{"width":33.33},"content":[{"type":"paragraph"}]}]}],"version":1}

Browser not supported