Ruby

Introduction

JFrog Xray provides security and compliance analysis for Ruby applications throughout the software development lifecycle. This page describes the supported scan contexts, capabilities, and dependency analysis available for Ruby.

Capabilities

Capability	Source Code Scanning	Binary Scanning
Vulnerability Matching (CVEs)	✅	✅
License Detection	✅	✅
Malicious Package Detection	❌	❌
Operational Risk	❌	❌
Smart Remediation	❌	❌

SCA capabilities are not currently available for Ruby in the source code scanning context.

Supported Files

Package Manager	Supported Files
RubyGems / Bundler	✅ Supported