You can scan your code directly within the Eclipse IDE.
Before you begin
- Veracode recommends that you select Build Automatically for your project in the Project menu, and resolve any blocking build errors before you scan.
- To run this task, you must have the Greenlight IDE User role.
About this task
To manually start a Veracode Greenlight scan:
- To start a Greenlight scan, go to , or use the shortkey, Ctrl+6.
After the scan is complete, review the security findings on the
Veracode Greenlight tab.
The Veracode Greenlight results are summarized in a subtab called Findings. In the Best Practices subtab, Veracode indicates the CWEs protected against in the code. The scan level indicates if the scan was done at the package or file level.
- Double-click a finding to locate the issue in the specific line of code in the scanned file.
Alternatively, right-click a finding to see the actions you can choose: open the
finding in the scanned file, show the finding details in a separate Details pane, or
filter by severity or
The details for each finding provide information about the CWE and specific remediation advice on what you can do to fix the code.
To clear all the results of the Veracode Greenlight scan,
click the eraser icon in the top-right corner or use the shortkey, Ctrl+0.
1 Non-minified code has not had unnecessary characters such as white space, new lines, comments, and block delimiters removed.