Community and language coverage

The Spectra Assure platform supports a variety of communities, programming languages, and file formats. A specific set of features is available for each of those categories.

The lists of supported communities and programming languages can be found in the tables below.

For every supported community and programming language, the tables cover the following information:

• Community Support/Programming language - the supported communities, programming languages, and frameworks
• Code Analysis - the supported file formats and environments on which Spectra Assure products can perform static analysis
• Packages - the supported package formats, libraries, and package managers
• Dedicated Policies - indicates if there are dedicated Spectra Assure policies for the community/language
• Threat Detection - indicates if the Spectra Assure platform identifies threats targeting the community/language
• Behavioral Analysis - indicates if the Spectra Assure platform performs code intent analysis
• Known Vulnerabilities - indicates if the Spectra Assure platform detects publicly disclosed vulnerabilities (CVE)

Community coverage

Community Support	Code Analysis	Packages	Dedicated Policies	Threat Detection	Behavioral Analysis	Known Vulnerabilities
Windows	Compiled code PE: x86, arm, chpe Library code LIB	Windows (MSI, MSIX, APPX, WIM) Installers (NSIS, InnoSetup, InstallBuilder, InstallShield, Wise, Actual Installer, Advanced Installer, DreamShield, InstallAnywhere, WiX Toolset, SFX Archives) Documents (Microsoft Office, CHM, RTF, CRTF) Multimedia (BMP)	✔️	✔️	✔️	✔️
Linux	Compiled code ELF: x86, arm, mips Library code A/AR	Debian (DEB, UDEB) RedHat (RPM, DRPM) Alpine (APK) Documents (OpenOffice, LibreOffice, PDF, HTML) Multimedia (GIF, PNG, JPEG, TIFF, SVG)	✔️	✔️	✔️	✔️
Mac	Compiled code Mach-O: x86, arm, ppc	MacOS (PKG, DMG, Universal)	❌	✔️	❌	❌
Machine Learning	Model data	NumPy (NPY, NPZ) Keras, Tensorflow, scikit-learn, PyTorch, Joblib (PKL)	✔️	✔️	✔️	---
Development	CI/CD and IDE plugins	VSCode (VSIX) Jenkins (HPI)	❌	✔️	✔️	✔️
Containers	Container images Virtual machines	Universal (ISO, UDF) Windows (VHD, VHDX) Linux (OCI, LXD, OVA, VDI, VMDK, QCOW) Docker (TAR) Kaniko (TAR)	✔️	✔️	✔️	✔️

Language coverage

NOTE

The --- symbols indicate that either no packages for the programming language are supported, or the feature is not applicable to the programming language.

Programming Language	Code Analysis	Packages	Dedicated Policies	Threat Detection	Behavioral Analysis	Known Vulnerabilities
C/C++	Compiled code PE: x86, arm, chpe ELF: x86, arm, mips Mach-O: x86, arm, ppc	---	✔️	✔️	✔️	✔️
.NET (C#, F#, VB.NET)	Compiled bytecode CLR	NuGet (NUPKG)	❌	✔️	✔️	✔️
Visual Basic	Source code HTA, VBS, VBE, VBA Compiled code PE: x86, pcode	---	✔️	✔️	✔️	❌
Delphi	Compiled code PE: x86	---	✔️	✔️	✔️	❌
Python	Source code PY Compiled bytecode PYC Model data PKL	Wheel (WHL) PyProject (Poetry, Flit, Setuptools) Installers (Py2ExeInstaller, PyInstaller, PYZ) Keras, Tensorflow, scikit-learn, PyTorch, Joblib (PKL) NumPy (NPY, NPZ)	✔️	✔️	✔️	✔️
Node.js	Source code JS Compiled code Electron	NPM (TGZ) Electron (AppImage, ASAR)	❌	✔️	✔️	✔️
Ruby	Source code RB	RubyGems (GEM)	❌	✔️	✔️	✔️
Go	Compiled code PE: x86, arm ELF: x86, arm Mach-O: x86, arm, ppc	---	✔️	✔️	✔️	✔️
Rust	Compiled code PE: x86, arm ELF: x86, arm Mach-O: x86, arm, ppc	Cargo (TGZ)	✔️	✔️	✔️	✔️
Java	Compiled bytecode CLASS Scala	Maven (JAR, WAR)	❌	✔️	✔️	✔️
JavaScript	Source code HTA, JS, JSE, TypeScript Browser extension XPI, OEX, CRX	---	❌	✔️	✔️	❌
PHP	Source code PHP	Packagist (ZIP, TGZ)	❌	✔️	❌	✔️
AutoIt	Source code AU3 Compiled code PE: x86	---	✔️	✔️	✔️	---
PowerShell	Source code BAT PS	---	❌	✔️	✔️	---
Shell	Source code SH	---	❌	✔️	✔️	---