Menu
I'm attempting to have an iOS application scanned by Veracode: an application security platform. In order for them to scan an .IPA, the .IPA needs to contain debug symbols.
For the Archive build-configuration and project/target being used, I've specified:
Yet, Veracode still gives me the following error when submitting the .IPA:
Primary Files Compiled without Debug Symbols - 1 File
Is there another step I need to take to create debug symbols, perhaps wrt archiving?
694
Veracode SCA upload and scan only analyzes JAR, WAR, and EAR files. It ignores Java build files, such as pom.
Veracode supports analyzing Windows C/C++ code compiled for the Intel IA32 and X86_64 architectures.
Veracode Static Analysis supports all widely used languages for desktop, web and mobile applications. This makes Veracode a great choice of static analysis tool for C/C++, Java, C#, . NET, and many other languages.
I had the same issue. I was able to resolve it by following the veracode instructions below. It basically tells you to manually create archive package, move the .app and .app.sym folders to a new location and then rename the zip file to an ipa.
From Veracode Help Center:
"Because Xcode does not create .IPA packages that contain DSYM information, you must create the package yourself. Xcode dynamically creates a folder to contain the .app and .app.dsym files. There is no definite path to this folder, but you can search the folder after you build your application. To do this, open Xcode and click Products on the left side of the window. Right-click the .app file, and select Reveal in Finder, which takes you to the folder where the .app and .app.dsym files are located. Once you have located the DSYM information, you can package your compiled iOS application as follows:
162
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
