This script is a helper for splitting application profiles. This is usually recommended when working with microservices to ensure that all of them can be scanned individually.
Clone this repository:
git clone https://github.com/cadonuno/Veracode-Application-Profile-Splitting-Helper.git
Install dependencies:
cd Veracode-Application-Profile-Splitting-Helper
pip install -r requirements.txt
It is highly recommended that you store veracode API credentials on disk, in a secure file that has appropriate file protections in place.
(Optional) Save Veracode API credentials in ~/.veracode/credentials
[default]
veracode_api_key_id = <YOUR_API_KEY_ID>
veracode_api_key_secret = <YOUR_API_KEY_SECRET>
The Excel template present in the repository can be used to prepare the metadata.
You can use as many newApp<number> columns as needed, for each, a new profile will be created and named <original application name><separator (-s parameter)><newApp<number> column value>.
Fields left empty or omitted will be copied from the original application. To clear a field, set it to NULL (case-sensitive).
A column called 'Collection Name' can be used to create a collection and group all the newly created applications.
A new column will be added to the right containing the status of each line. Successfully updated rows will be set to 'success' and will be skipped on future runs.
py veracode-application-profile-splitting-helper.py -f <excel_file_with_application_definitions> [-s <separator>] [-r <header_row>] [-d]"
Reads all lines in <excel_file_with_application_definitions>, for each line, it will update the profile
<header_row> defines which row contains your table headers, which will be read to determine where each field goes (default 2).
<separator> defines the separator to be used to name the new application profiles (default ': ').
If a credentials file is not created, you can export the following environment variables:
export VERACODE_API_KEY_ID=<YOUR_API_KEY_ID>
export VERACODE_API_KEY_SECRET=<YOUR_API_KEY_SECRET>
python bulk-create-applications.py -f <excel_file_with_application_definitions> -r <header_row> [-d]
See the LICENSE file for details