Supported Languages and Files

soos sca supports a wide range of package managers, manifest formats, and file types we cover the most popular package managers for each language soos sca primarily relies on manifest files, however cryptographic identification and verification is supported for some languages if you don’t see your language, package manager, or manifest format, feel free to reach out at support at soos docid 0pbq9jkgmiwk wf9eougo we're constantly expanding our support and will either add your request to our roadmap or let you know when to expect it net (c#, vb) nuget manifest files packages lock json (lock file) paket lock (lock file) packages config csproj vbproj project assets json paket dependencies crytographic identification nuget net (c#) unity manifest json packages lock json (lock file) c/c++ conan conanfile py conanfile txt conan lock (lock file) dart (flutter) dart pm (pub package manager) pubspec yaml pubspec lock (lock file) elixir mix mix exs mix lock (lock file) erlang rebar3 rebar config rebar lock (lock file) go (golang) go modules go mod homebrew various languages brewfile brewfile lock json java gradle & maven manifest files pom xml pom build gradle gradle lockfile cryptographic identification jar kotlin gradle gradle lockfile build gradle kts manifest formats build gradle and build gradle kts do not support version variables or substitutions if you are using either of these, consider using a lock file, see lock vs non lock manifests docid 0fynw72sy9fcmxwpmfivc for more details node npm, yarn, and pnpm package lock json (lock file) package json pnpm lock yaml (lock file) yarn lock (lock file) php composer composer json python pypi pipfile lock (lock file) poetry lock (lockfile) pdm lock (lockfile) pipfile pyproject toml (poetry & pdm) req \\\\ txt ruby ruby gems gemfile lock (lock file) gemfile rust cargo cargo toml cargo lock (lock file) swift swiftpm package swift package resolved (lock file)