Supported Programming Languages
DeepTraQ supports vulnerability detection across multiple programming languages and package ecosystems through its integrated code scanning engines and vulnerability databases.
Package Ecosystems
The following ecosystems are supported for dependency and package vulnerability scanning. Vulnerability intelligence is sourced from public advisories including the GitHub Advisory Database.
Reference: https://github.com/advisories
| Language / Ecosystem |
|---|
| Python |
| Node.js |
| Maven (Java dependencies) |
| Go |
| Composer (PHP dependencies) |
| Erlang |
| GitHub Actions |
| NuGet (.NET dependencies) |
| Pub (Dart / Flutter dependencies) |
| RubyGems |
| Rust |
| Swift |
Source Code Languages
DeepTraQ also supports static code analysis through scanners compatible with SonarQube Community Edition capabilities.
The following languages and configuration formats are supported for analysis.
Reference: https://docs.sonarsource.com/sonarqube-server/analyzing-source-code/languages/overview
| Programming Language / Technology |
|---|
| Azure Resource Manager |
| C# |
| CloudFormation |
| CSS |
| Docker |
| Flex |
| Go |
| HTML |
| Java |
| JavaScript |
| Kotlin |
| Kubernetes / Helm |
| PHP |
| Python |
| Ruby |
| Rust |
| Scala |
| Secrets Detection |
| Terraform |
| TypeScript |
| VB.NET |
| XML |
These languages and technologies can be analyzed for:
- Security vulnerabilities
- Code quality issues
- Misconfigurations
- Secrets exposure
Support may vary depending on the scanning engine and configuration used in the scan profile.