Scanning in Veracode takes a significant amount of time, so it is not carried out for all builds due to limited resources.

1. All Python code is scanned.
2. All sources needed for the Windows build (scanning takes less time).
3. The results are not imported because the validation takes over an hour (time limit for job execution)
4. Since the check takes a lot of time and restarting at a time when the previous scan has not finished will result in an error I scheduled it for once a week.
5. Vulnerabilities found in the code will not affect the "success" of the job (failBuildOnPolicyFail parameter)