/Veracode-Application-Profile-Splitting-Helper

Primary LanguagePythonMIT LicenseMIT

Veracode Application Profile Splitting Helper

Overview

This script is a helper for splitting application profiles. This is usually recommended when working with microservices to ensure that all of them can be scanned individually.

Installation

Clone this repository:

git clone https://github.com/cadonuno/Veracode-Application-Profile-Splitting-Helper.git

Install dependencies:

cd Veracode-Application-Profile-Splitting-Helper
pip install -r requirements.txt

Getting Started

It is highly recommended that you store veracode API credentials on disk, in a secure file that has appropriate file protections in place.

(Optional) Save Veracode API credentials in ~/.veracode/credentials

[default]
veracode_api_key_id = <YOUR_API_KEY_ID>
veracode_api_key_secret = <YOUR_API_KEY_SECRET>

Preparing the Excel Template

The Excel template present in the repository can be used to prepare the metadata.
You can use as many newApp<number> columns as needed, for each, a new profile will be created and named <original application name><separator (-s parameter)><newApp<number> column value>.
Fields left empty or omitted will be copied from the original application. To clear a field, set it to NULL (case-sensitive).
A column called 'Collection Name' can be used to create a collection and group all the newly created applications.

After execution:

A new column will be added to the right containing the status of each line. Successfully updated rows will be set to 'success' and will be skipped on future runs.

Running the script

py veracode-application-profile-splitting-helper.py -f <excel_file_with_application_definitions> [-s <separator>] [-r <header_row>] [-d]"
    Reads all lines in <excel_file_with_application_definitions>, for each line, it will update the profile
    <header_row> defines which row contains your table headers, which will be read to determine where each field goes (default 2).
    <separator> defines the separator to be used to name the new application profiles (default ': ').

If a credentials file is not created, you can export the following environment variables:

export VERACODE_API_KEY_ID=<YOUR_API_KEY_ID>
export VERACODE_API_KEY_SECRET=<YOUR_API_KEY_SECRET>
python bulk-create-applications.py -f <excel_file_with_application_definitions> -r <header_row> [-d]

License

MIT license

See the LICENSE file for details