Skip to main content

Community and language coverage

The Spectra Assure platform supports a variety of communities, programming languages, and file formats. A specific set of features is available for each of those categories.

The tables on this page contain supported communities and programming languages.

For every supported community and programming language, the tables cover the following information:

  • Code Analysis - the supported file formats and environments on which Spectra Assure products can perform static analysis
  • Packages - the supported package formats, libraries, and package managers
  • Dedicated Policies - indicates if there are dedicated Spectra Assure policies for the community/language
  • Threat Detection - indicates if the Spectra Assure platform identifies threats targeting the community/language
  • Behavioral Analysis - indicates if the Spectra Assure platform performs code intent analysis
  • Known Vulnerabilities - indicates if the Spectra Assure platform detects publicly disclosed vulnerabilities (CVE)

Community coverageโ€‹

Select a community in the table for details about code analysis and package format support.

CommunityDedicated PoliciesThreat DetectionBehavioral AnalysisKnown Vulnerabilities
WindowsWindows and Linux mitigation checks in compiled binaries onlyโœ”๏ธโœ”๏ธVulnerabilities in statically linked libraries only
LinuxWindows and Linux mitigation checks in compiled binaries onlyโœ”๏ธโœ”๏ธโœ”๏ธ
macOSโŒโœ”๏ธโŒโŒ
Machine Learningโœ”๏ธโœ”๏ธโœ”๏ธN/A or unsupported
DevelopmentโŒโœ”๏ธโœ”๏ธโœ”๏ธ
Containersโœ”๏ธโœ”๏ธโœ”๏ธโœ”๏ธ

Windowsโ€‹

Code Analysis
  • Compiled code: PE (x86, arm, chpe)
  • Library code: LIB
Packages
  • Windows (MSI, MSIX, APPX, WIM)
  • Installers (NSIS, InnoSetup, InstallBuilder, InstallShield, Wise, Actual Installer, Advanced Installer, DreamShield, InstallAnywhere, WiX Toolset, SFX Archives)
  • Documents (Microsoft Office, CHM, RTF, CRTF)
  • Multimedia (BMP)

Linuxโ€‹

Code Analysis
  • Compiled code: ELF(x86, arm, mips)
  • Library code: A/AR
Packages
  • Debian (DEB, UDEB)
  • RedHat (RPM, DRPM)
  • Alpine (APK)
  • Documents (OpenOffice, LibreOffice, PDF, HTML)
  • Multimedia (GIF, PNG, JPEG, TIFF, SVG)

macOSโ€‹

Code AnalysisCompiled code: Mach-O (x86, arm, ppc)
PackagesmacOS (PKG, DMG, Universal)

Machine Learningโ€‹

Code AnalysisModel data
Packages
  • NumPy (NPY, NPZ)
  • Keras, Tensorflow, scikit-learn, PyTorch, Joblib (PKL)

Developmentโ€‹

Code AnalysisCI/CD and IDE plugins
Packages
  • VSCode (VSIX)
  • Jenkins (HPI)

Containersโ€‹

Code Analysis
  • Container images
  • Virtual machines
Packages
  • Universal (ISO, UDF)
  • Windows:
    - VHD and VHDX - Virtual machines with MBR/GPT/LVM/EFI partitioning and NTFS/FAT/EXT/XFS/UFS2/BTRFS file systems only
  • Linux:
    - OCI, LXD, OVA;
    - VDI, VMDK and QCOW - Virtual machines with MBR/GPT/LVM/EFI partitioning and NTFS/FAT/EXT/XFS/UFS2/BTRFS file systems only
  • Docker (TAR)
  • Kaniko (TAR)

Language coverageโ€‹

Special conditions

Programming languages with the info (โ„น๏ธ) symbol in the table have some restrictions or special conditions for what is supported.

The following special conditions are indicated:

  • C/C++ - Dedicated Policies: Windows and Linux mitigation checks in compiled binaries only; Known Vulnerabilities: Vulnerabilities in statically linked libraries only
  • Visual Basic - Dedicated Policies: Windows and Linux mitigation checks in compiled binaries only
  • Delphi - Dedicated Policies: Windows and Linux mitigation checks in compiled binaries only
  • Python - Dedicated Policies: Machine learning model data only
  • Go - Dedicated Policies: Windows and Linux mitigation checks in compiled binaries only
  • Rust - Dedicated Policies: Windows and Linux mitigation checks in compiled binaries only
  • AutoIt - Dedicated Policies: Windows and Linux mitigation checks in compiled binaries only
LanguageCode AnalysisPackagesDedicated PoliciesThreat DetectionBehavioral AnalysisKnown Vulnerabilities
C/C++Compiled code
  • PE: x86, arm, chpe
  • ELF: x86, arm, mips
  • Mach-O: x86, arm, ppc
N/A or unsupported
โ„น๏ธโœ”๏ธโœ”๏ธโ„น๏ธ
.NET (C#, F#, VB.NET)Compiled bytecode
  • CLR
  • NuGet (NUPKG)
โŒโœ”๏ธโœ”๏ธโœ”๏ธ
Visual BasicSource code
  • HTA, VBS, VBE, VBA
Compiled code
  • PE: x86, pcode
N/A or unsupported
โ„น๏ธโœ”๏ธโœ”๏ธโŒ
DelphiCompiled code
  • PE: x86
N/A or unsupported
โ„น๏ธโœ”๏ธโœ”๏ธโŒ
PythonSource code
  • PY
Compiled bytecode
  • PYC
Model data
  • PKL
  • Wheel (WHL)
  • PyProject (Poetry, Flit, Setuptools)
  • Installers (Py2ExeInstaller, PyInstaller, PYZ)
  • Keras, Tensorflow, scikit-learn, PyTorch, Joblib (PKL)
  • NumPy (NPY, NPZ)
โ„น๏ธโœ”๏ธโœ”๏ธโœ”๏ธ
Node.jsSource code
  • JS
Compiled code
  • Electron
  • NPM (TGZ)
  • Electron (AppImage, ASAR)
โŒโœ”๏ธโœ”๏ธโœ”๏ธ
RubySource code
  • RB
  • RubyGems (GEM)
โŒโœ”๏ธโœ”๏ธโœ”๏ธ
GoCompiled code
  • PE: x86, arm
  • ELF: x86, arm
  • Mach-O: x86, arm, ppc
N/A or unsupported
โ„น๏ธโœ”๏ธโœ”๏ธโœ”๏ธ
RustCompiled code
  • PE: x86, arm
  • ELF: x86, arm
  • Mach-O: x86, arm, ppc
  • Cargo (TGZ)
โ„น๏ธโœ”๏ธโœ”๏ธโœ”๏ธ
JavaCompiled bytecode
  • CLASS
  • Scala
  • Maven (JAR, WAR)
โŒโœ”๏ธโœ”๏ธโœ”๏ธ
JavaScriptSource code
  • HTA, JS, JSE, TypeScript
Browser extension
  • XPI, OEX, CRX
N/A or unsupported
โŒโœ”๏ธโœ”๏ธโŒ
PHPSource code
  • PHP
  • Packagist (ZIP, TGZ)
โŒโœ”๏ธโŒโœ”๏ธ
AutoItSource code
  • AU3
Compiled code
  • PE: x86
N/A or unsupported
โ„น๏ธโœ”๏ธโœ”๏ธN/A or unsupported
PowerShellSource code
  • BAT
  • PS
N/A or unsupported
โŒโœ”๏ธโœ”๏ธN/A or unsupported
ShellSource code
  • SH
N/A or unsupported
โŒโœ”๏ธโœ”๏ธN/A or unsupported