System requirements for SCA
The types of files that can be scanned by ASoC when you perform open source testing.
Language support
AppScan on Cloud strives to support as many open source packages as possible; we update CVE data daily. However, license information may not always be available for less common packages.
Language and version | Supported source/binary file types | Package/Build manager and version | Package/Build manager supported config files |
---|---|---|---|
.NET |
|
|
|
|
|
||
|
For .NET only, SCA can analyze the configuration file before build, but the results will include only direct libraries and will be less accurate. | ||
Java |
|
||
JavaScript NodeJS |
|
NPM (version 5.0.0/2017 and newer) |
|
Python (version 3.3 and newer) |
Note: When scanning
.py
and .whl files, the project should be built
as a virtual environment (verv ). |
Pip (version 3.4 and newer) |
|
Poetry (all versions) |
|
||
GO |
|
Go Modules (GO version 1.15 and later) | GO and GO CLI installed, and the project includes the config
file go.mod . |
PHP |
|
||
C |
|
||
C++ |
|