Scanners

---

BoostSecurity offers a variety of robust scanners that can effectively detect and resolve potential security risks. Nonetheless, with numerous scanners to choose from, it can be difficult to decide which ones are most appropriate for your particular repository.

That's why BoostSecurity provides a range of tools tailored to different programming languages, enabling you to pinpoint potential vulnerabilities in your repository with ease which are:

Scanner	Security Requirement	Supports
BoostNative	SAST	Go, Java, JavaScript, Python, Ruby, Terraform, TypeScript
Brakeman	SAST	Ruby
Bundler Audit	SCA	Ruby
Checkov	SAST	Ansible, CloudFormation, Kubernetes, Serverless, Terraform
CodeQL	SAST	Go, Java, JavaScript, Python, Ruby, TSX, TypeScript
Gitleaks	SAST	CloudFormation, Docker, Go, Java, JavaScript, Kotlin, Kubernetes, PHP, Python, Ruby, Rust, Scala, Serverless, Terraform, TSX, TypeScript
GoSec	SAST	Go
Nancy	SCA	Go
NPM Audit	SCA	JavaScript, TypeScript
OSV Scanner	SCA	Go, JavaScript, Python, Ruby, TypeScript
Safety	SCA	Python
Semgrep	SAST	c, Docker, Go, Java, JavaScript, Kotlin, PHP, Python, Ruby, Rust, Scala, Terraform, TSX, TypeScript
Snyk	SCA	Go, Java, JavaScript, Kotlin, PHP, Python, Ruby, Scala
Trivy	SCA, SBOM	Docker, Go, Java, JavaScript, .Net, Python, Ruby, TypeScript