v_0948: New features and bug fixes

What's Changed

• New API calls for retrieving manual penetration tests (scans) and manual scan findings.
• Add support for setting and updating the git_repo_url field on application create and edit.
• DAST scan config missing required scan contact info by @AaronButler-Veracode in #83

Full Changelog: v_0947...v_0948

v_0947: SBOM scan

What's Changed

• Update dynamic.py by @aszaryk in #81
• Experimental support for the new SBOM scan API with code samples

Full Changelog: v_0946...v_0947

v_0946: SCA App Linking support

This release adds methods to support linking and unlinking SCA projects from application profiles. The new methods, link_project and unlink_project, are documented in the SCA methods documentation.

Full Changelog: v_0945...v_0946

v_0945: SCA annotations API support

This release adds methods for working with SCA mitigations for vulnerabilities and license risk. Details on how to use the get_sca_annotations and add_sca_annotation methods are in the SCA documentation.

Full Changelog: v_0944...v_0945

v_0944: delete_build, app owner metadata, examples

What's Changed

• Added delete_build function to xmlapi by @bnreplah in #70
• Add example for getting App id and sandbox id using legacy XML API by @relaxnow in #74
• Add support for business owner data for app profiles (fixes #73)

New Contributors

• @bnreplah made their first contribution in #70
• @relaxnow made their first contribution in #74

Full Changelog: v_0943...v_0944

v_0943: App project linkage lookup, custom fields for apps

What's Changed

• Add custom fields for application profile create/update by @Gby56 in #69
• Add new API for finding linked SCA projects, given an app ID. See documentation for get_app_projects in the docs

Full Changelog: v_0942...v_0943

Community contributions for Dynamic, Identity, Applications

What's Changed

• Feature: allow updating policies on apps by @henryfbp in #66
• Make incremental and partial configurable by @Gby56 in #49
• Dynamic scan start and set duration by @aszaryk in #68
• Updates to reportingapi_sample.py and the Reporting API documentation.

New Contributors

• @henryfbp made their first contribution in #66

Full Changelog: v_0940...v_0942

v_0940: Reporting API EA, API Creds management

What's Changed

• Add reportingapi and api creds methods by @tjarrettveracode in #65

Note that the Reporting API methods will only work for customers participating in the early access program for the Veracode Reporting API.

Full Changelog: v_0939...v_0940

v_0939: Bugfix release

What's Changed

• setup scan needs blank contact info if None by @AaronButler-Veracode in #62
• Change the way retries are handled for CWE 429, 502, 503, 504 (fixes #63)

Full Changelog: v_0938...v_0939

SBOM options

What's Changed

• New parameters for the SBOM APIs allow controlling whether vulnerability information is included and allows generating SPDX SBOM from an SCA Agent project.
• Fixed incorrect links in the pypi listing page for the source repo and bug reports.
• Fixed if parameter was None method would crash by @AaronButler-Veracode in #61

New Contributors

• @AaronButler-Veracode made their first contribution in #61

Full Changelog: v_0937...v_0938