Supported Languages and Manifests

VeriBOM supports a wide range of programming languages, package managers, and manifest formats to cater to diverse software development environments.

SCA Scanning

Language

Package Managers

Manifests

Remarks

Java

Maven, Gradle

POM (Project Object Model), pom.xml, .pom, build.gradle**, gradle.lock file

JavaScript

npm, yarn

package.json

Python

pip, Pipenv

requirements.txt, Pipfile,pyproject.toml (Poetry & PDM)

C#/.NET

NuGet

.csproj, .sln

Ruby

gem

Gemfile, Gemfile.lock

go get, dep, modules

go.mod, go.sum

PHP

Composer

composer.json, composer.lock

Swift

Swift Package Manager

Package.swift

TypeScript

yarn, npm

package.json

C/C++

Conan, vcpkg

CMakeLists.txt, .vcxproj

Rust

Cargo

Cargo.toml, Cargo.lock

Haskell

Stack

stack.yaml

Elixir

Mix

mix.exs

Scala

sbt

build.sbt

Kotlin

Gradle

build.gradle, settings.gradle, build.gradle.kts

Objective-C

CocoaPods

Podfile, Podfile.lock

Shell Scripting

N/A

N/A (often shell scripts)

Dart

Dart PM

pubspec.yaml

Container Scanning

Docker Containers (Above languages along with Linux SBOM Scan - Alpine, Debian, Fedora)

PreviousReferences

Last updated 2 years ago