Skip to main content

Agent-Based Scan Language Support Matrix

This table identifies the functionality available to each language and package manager that Veracode Software Composition Analysis agents support.

LanguagePackage ManagerQuick Scan (Level 1)Full Scan (Level 2)Vulnerable Methods Scan (Level 3)
JavaMaven XX
Gradle XX
Ant XX
JarsXXX
ScalaSBT X 
KotlinMaven XX
Gradle XX
GoTrashXX 
GlideXX 
GoVendorXX 
GoDepXX 
go get X 
Go modulesXX 
DepXX 
Pythonpip XX
PipenvXXX
JavaScriptNPMXXX
YarnXXX
BowerXX 
Objective-CCocoaPodsXX 
SwiftCocoaPodsXX 
RubyBundlerXXX
PHPComposerXX 
C/C++Make X  
C#/.NETNuGet XX
DLLXXX

Additionally, Veracode SCA agents support quick scans and full scans of Android Archive (AAR) files in Android projects.