Scala

Introduction

JFrog Xray provides security and compliance analysis for Scala applications throughout the software development lifecycle. Scala projects typically produce JVM-compatible artifacts and use SBT as the primary build tool.

Capabilities

Capability	Source Code Scanning	Binary Scanning
Vulnerability Matching (CVEs)	❌	✅
License Detection	❌	✅
Malicious Package Detection	❌	✅
Operational Risk	❌	❌
Smart Remediation	❌	❌

Source code scanning is not currently supported for Scala. No package managers or manifest files are analyzed.

Supported Files

Package Manager	Supported Files
SBT	❌ Not supported