MitigationExpire is a utility designed to expire mitigations in Veracode for both Static and SCA. This tool specifically targets policy-level mitigations for Static and SCA vulnerability mitigations, excluding license mitigations. The expiration timeline is set at findings that have been mitigated for more than 30 days (default). If you want to change the days, you can edit the days_threshold variable in the script
1. Veracode Credentials File Local:
Ensure you have your Veracode credentials file locally available for the utility to authenticate with the Veracode API.
-
Clone the Repository:
git clone https://github.com/your-username/MitigationExpire.git
-
Navigate to the Project Directory:
cd MitigationExpire -
Install Dependencies:
pip install -r requirements.txt
-
Configure Veracode Credentials: Place your Veracode credentials file locally in the project directory.
-
Run the Utility:
python mitigation_expire.py
- The utility will only expire mitigations older than 30 days.
- License mitigations are not affected; only policy-level mitigations and SCA vulnerability mitigations are considered.
- Ensure your Veracode credentials file is correctly configured for authentication.
Feel free to contribute or report issues on GitHub.