Skip to main content

Community and language coverage

The Spectra Assure platform supports a variety of communities, programming languages, and file formats. A specific set of features is available for each of those categories.

The tables on this page contain supported communities and programming languages.

For every supported community and programming language, the tables cover the following information:

  • Code Analysis - the supported file formats and environments on which Spectra Assure products can perform static analysis
  • Packages - the supported package formats, libraries, and package managers
  • Dedicated Policies - indicates if there are dedicated Spectra Assure policies for the community/language
  • Threat Detection - indicates if the Spectra Assure platform identifies threats targeting the community/language
  • Behavioral Analysis - indicates if the Spectra Assure platform performs code intent analysis
  • Known Vulnerabilities - indicates if the Spectra Assure platform detects publicly disclosed vulnerabilities (CVE)

Community coverageโ€‹

Select a community in the table for details about code analysis and package format support.

CommunityDedicated PoliciesThreat DetectionBehavioral AnalysisKnown Vulnerabilities
WindowsWindows and Linux mitigation checks in compiled binaries onlyโœ”๏ธโœ”๏ธVulnerabilities in statically linked libraries only
LinuxWindows and Linux mitigation checks in compiled binaries onlyโœ”๏ธโœ”๏ธโœ”๏ธ
macOSโŒโœ”๏ธโŒโŒ
Machine Learningโœ”๏ธโœ”๏ธโœ”๏ธN/A or unsupported
DevelopmentโŒโœ”๏ธโœ”๏ธโœ”๏ธ
Virtual MachinesโŒโœ”๏ธโœ”๏ธN/A or unsupported
Containersโœ”๏ธโœ”๏ธโœ”๏ธโœ”๏ธ

Windowsโ€‹

Code Analysis

  • Compiled code: PE (x86, arm, chpe)
  • Library code: LIB

Packages

  • Windows (MSI, MSIX, APPX, WIM)
  • Installers (NSIS, InnoSetup, InstallBuilder, InstallShield, Wise, Actual Installer, Advanced Installer, DreamShield, InstallAnywhere, WiX Toolset, SFX Archives)
  • Documents (Microsoft Office, CHM, RTF, CRTF)
  • Multimedia (BMP)

Linuxโ€‹

Code Analysis

  • Compiled code: ELF (x86, arm, mips)
  • Library code: A/AR

Packages

  • Debian (DEB, UDEB)
  • RedHat (RPM, DRPM)
  • Alpine (APK)
  • Documents (OpenOffice, LibreOffice, PDF, HTML)
  • Multimedia (GIF, PNG, JPEG, TIFF, SVG)

macOSโ€‹

Code Analysis

  • Compiled code: Mach-O (x86, arm, ppc)

Packages

  • macOS (PKG, DMG, Universal)

Machine Learningโ€‹

Code Analysis

  • Model data

Packages

  • NumPy (NPY, NPZ)
  • Keras, Tensorflow, scikit-learn, PyTorch, Joblib (PKL)

Developmentโ€‹

Code Analysis

  • CI/CD and IDE plugins

Packages

  • VSCode (VSIX)
  • Jenkins (HPI)

Virtual Machinesโ€‹

Code Analysis

  • Filesystem data

Packages

  • Windows:

    • VHD, VHDX - Virtual machines with MBR/GPT/LVM/EFI partitioning and NTFS/FAT/EXT/XFS/UFS2/BTRFS file systems only

  • Linux:

    • OVA
    • VDI, VMDK, QCOW - Virtual machines with MBR/GPT/LVM/EFI partitioning and NTFS/FAT/EXT/XFS/UFS2/BTRFS file systems only

Containersโ€‹

Code Analysis

  • Container images

Packages

  • Universal (ISO, UDF)
  • Linux (OCI, LXD)
  • Docker (TAR)
  • Kaniko (TAR)

Language coverageโ€‹

Special conditions

Programming languages with the info (โ„น๏ธ) symbol in the table have some restrictions or special conditions for what is supported.

The following special conditions are indicated:

  • C/C++ - Dedicated Policies: Windows and Linux mitigation checks in compiled binaries only; Known Vulnerabilities: Vulnerabilities in statically linked libraries only
  • Visual Basic - Dedicated Policies: Windows and Linux mitigation checks in compiled binaries only
  • Delphi - Dedicated Policies: Windows and Linux mitigation checks in compiled binaries only
  • Python - Dedicated Policies: Machine learning model data only
  • Go - Dedicated Policies: Windows and Linux mitigation checks in compiled binaries only
  • Rust - Dedicated Policies: Windows and Linux mitigation checks in compiled binaries only
  • AutoIt - Dedicated Policies: Windows and Linux mitigation checks in compiled binaries only
LanguageCode AnalysisPackagesDedicated PoliciesThreat DetectionBehavioral AnalysisKnown Vulnerabilities
C/C++Compiled code
  • PE: x86, arm, chpe
  • ELF: x86, arm, mips
  • Mach-O: x86, arm, ppc
N/A or unsupported
โ„น๏ธโœ”๏ธโœ”๏ธโ„น๏ธ
.NET (C#, F#, VB.NET)Compiled bytecode
  • CLR
  • NuGet (NUPKG)
โŒโœ”๏ธโœ”๏ธโœ”๏ธ
Visual BasicSource code
  • HTA, VBS, VBE, VBA
Compiled code
  • PE: x86, pcode
N/A or unsupported
โ„น๏ธโœ”๏ธโœ”๏ธโŒ
DelphiCompiled code
  • PE: x86
N/A or unsupported
โ„น๏ธโœ”๏ธโœ”๏ธโŒ
PythonSource code
  • PY
Compiled bytecode
  • PYC
Model data
  • PKL
  • Wheel (WHL)
  • PyProject (Poetry, Flit, Setuptools)
  • Installers (Py2ExeInstaller, PyInstaller, PYZ)
  • Keras, Tensorflow, scikit-learn, PyTorch, Joblib (PKL)
  • NumPy (NPY, NPZ)
โ„น๏ธโœ”๏ธโœ”๏ธโœ”๏ธ
Node.jsSource code
  • JS
Compiled code
  • Electron
  • NPM (TGZ)
  • Electron (AppImage, ASAR)
โŒโœ”๏ธโœ”๏ธโœ”๏ธ
RubySource code
  • RB
  • RubyGems (GEM)
โŒโœ”๏ธโœ”๏ธโœ”๏ธ
GoCompiled code
  • PE: x86, arm
  • ELF: x86, arm
  • Mach-O: x86, arm, ppc
N/A or unsupported
โ„น๏ธโœ”๏ธโœ”๏ธโœ”๏ธ
RustCompiled code
  • PE: x86, arm
  • ELF: x86, arm
  • Mach-O: x86, arm, ppc
  • Cargo (TGZ)
โ„น๏ธโœ”๏ธโœ”๏ธโœ”๏ธ
JavaCompiled bytecode
  • CLASS
  • Scala
  • Maven (JAR, WAR)
โŒโœ”๏ธโœ”๏ธโœ”๏ธ
JavaScriptSource code
  • HTA, JS, JSE, TypeScript
Browser extension
  • XPI, OEX, CRX
N/A or unsupported
โŒโœ”๏ธโœ”๏ธโŒ
PHPSource code
  • PHP
  • Packagist (ZIP, TGZ)
โŒโœ”๏ธโŒโœ”๏ธ
AutoItSource code
  • AU3
Compiled code
  • PE: x86
N/A or unsupported
โ„น๏ธโœ”๏ธโœ”๏ธN/A or unsupported
PowerShellSource code
  • BAT
  • PS
N/A or unsupported
โŒโœ”๏ธโœ”๏ธN/A or unsupported
ShellSource code
  • SH
N/A or unsupported
โŒโœ”๏ธโœ”๏ธN/A or unsupported