getmitigationinfo.do

APIs

The getmitigationinfo.do call retrieves all the information on actions that users have performed on a list of one or more flaws in the specified build.

Before using this API, Veracode strongly recommends that you read API Usage and Access Guidelines.

Resource URL

https://analysiscenter.veracode.com/api/getmitigationinfo.do

Parameters

build_id Integer. Required.
flaw_id_list Integer. Required. The flaw ID is available on the Triage Flaws page in the Veracode Platform.

Example Syntax

curl --compressed -u <VeracodeUsername>
        https://analysiscenter.veracode.com/api/getmitigationinfo.do -F "build_id=10001" -F
        "flaw_id_list=2"> mitigationinfo.xml

Results

You are prompted for your API account password.

The getmitigationinfo.do call returns the mitigationinfo XML document, which references the mitigationinfo.xsd. Additional mitigationinfo.xsd schema documentation is available. Use the XSD file to validate the XML data. The following is an example of returned information:

<mitigationinfo xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns="https://analysiscenter.veracode.com/schema/mitigationinfo/1.0" xsi:schemaLocation="https://analysiscenter.veracode.com/schema/mitigationinfo/1.0 https://amber-web-16.veracode.local:18443/resource/mitigationinfo.xsd" mitigationinfo_version="1.1" build_id="12081">
<issue flaw_id="2" category="Exposure of Private Information ('Privacy Violation')">
<mitigation_action action="appdesign" desc="Mitigate by Design" reviewer="VendorTechnique : M1 :  Establish and maintain control over all of your inputs
Specifics : Specifics comment added by vendor.
Remaining Risk : Remaining Risk comment added by vendor.
Verification : Verification comment added by vendor."/>
<mitigation_action action="deviates" desc="Deviates from Guidelines" reviewer="Veracode" date="2017-01-20 02:29:32" comment="Deviates comment added by internal admin."/>
</issue>
<issue flaw_id="3" category="Exposure of Private Information ('Privacy Violation')">
<mitigation_action action="appdesign" desc="Mitigate by Design" reviewer="VendorTechnique : M1 :  Establish and maintain control over all of your inputs
Specifics : Specifics comment added by vendor.
Remaining Risk : Remaining Risk comment added by vendor.
Verification : Verification comment added by vendor."/>
<mitigation_action action="conforms" desc="Conforms to Guidelines" reviewer="Veracode" date="2017-01-20 02:29:07" comment="Conform comment added by internal admin."/>
</issue>
</mitigationinfo>