Supported package managers, languages and files | Fluid Attacks Help

Supported package managers, languages and files in SCA

The following table shows the package managers, languages and file extensions supported by Fluid Attacks' software composition analysis (SCA).
Package manager
Version(s)
Language(s)
File extension(s)
Number of advisories
NPM
1 to 3
JavaScript/TypeScript
package.json, package-lock.json
15,480
Yarn
1
JavaScript/TypeScript
package.json, yarn.lock
15,480
pNPM
1
JavaScript/TypeScript
package.json, pnpm-lock.yaml
15,480
pip
>20.0
Python
requirements.txt
12,676
Poetry
>1.0.0
Python
poetry.lock
12,676
Maven
>3.0.0
Java
pom.xml
10,430
Gradle
>5.1
Java
.gradle, build.gradle.kts
10,430
SBT
All
Java
build.sbt
10,430
Composer
>1.0.0
PHP
composer.json, composer.lock
6,167
Go
All
Go
go.mod
3,196
NuGet
All
C#
csproj
2,988
RubyGems
>3.5
Ruby
Gemfile, Gemfile.lock
1,685
Cargo
All
Rust
Cargo.toml, Cargo.lock
691
Conan
>2.0
C, C++
conanfile.txt, conan.lock, conanfile.py
549
Swift
All
Swift
Packages.resolved
30
Hex
All
Erlang
mix.exs, mix.lock
24
GitHub Actions
All
YAML
workflows.yaml
15
Docker Images
All
Docker
N/A
11
Pub
All
Dart
pubspec.yaml
7
Free trial
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.