--- title: .NET Compatibility Requirements description: Datadog, the leading service for cloud-scale monitoring. breadcrumbs: >- Docs > Datadog Security > Code Security > Software Composition Analysis > Set up SCA in your running services > Compatibility Requirements > .NET Compatibility Requirements --- # .NET Compatibility Requirements {% callout %} # Important note for users on the following Datadog sites: app.ddog-gov.com, us2.ddog-gov.com {% alert level="danger" %} This product is not supported for your selected [Datadog site](https://docs.datadoghq.com/getting_started/site.md). (). {% /alert %} {% /callout %} ## Code Security capabilities support{% #code-security-capabilities-support %} The following code security capabilities are supported in the .NET library, for the specified tracer version: | Code Security capability | Minimum .NET tracer version | | ------------------------------------------- | --------------------------- | | Runtime Software Composition Analysis (SCA) | 2.16.0 | | Runtime Code Analysis (IAST) | 2.42.0 | The minimum tracer version to get all supported application security capabilities for .NET is 2.42.0. ### Supported deployment types{% #supported-deployment-types %} | Type | Runtime Software Composition Analysis (SCA) | Runtime Code Analysis (IAST) | | ----------------- | ------------------------------------------- | ---------------------------- | | Docker | yes | yes | | Kubernetes | yes | yes | | Amazon ECS | yes | yes | | AWS Fargate | yes | Preview (1.15.0) | | AWS Lambda | | Azure App Service | yes | yes | **Note**: Azure App Service is supported for **web applications only**. Code Security capabilities are not supported for Azure Functions. ## Language and framework compatibility{% #language-and-framework-compatibility %} ### Supported .NET versions{% #supported-net-versions %} For a list of supported platforms and operating systems, see [.NET Framework Compatibility](https://docs.datadoghq.com/tracing/trace_collection/compatibility/dotnet-framework.md) and [.NET/.NET Core Compatiblity](https://docs.datadoghq.com/tracing/trace_collection/compatibility/dotnet-core.md). ### Web framework compatibility{% #web-framework-compatibility %} - Tags for the HTTP request (status code, method, etc) - Distributed Tracing to see attack flows through your applications ##### Code Security Capability Notes{% #code-security-capability-notes %} - **Runtime Software Composition Analysis (SCA)** is supported on all frameworks. - If your framework is not listed below, **Runtime Code Analysis (IAST)** will still detect Insecure Cookie vulnerabilities. | Framework | Runtime Code Analysis (IAST) | | ----------------- | ---------------------------- | | ASP.NET MVC | yes | | ASP.NET Web API 2 | yes | {% alert level="info" %} If you don't see your framework of choice listed, let us know! Fill out [this short form to send details](https://forms.gle/gHrxGQMEnAobukfn7). {% /alert %} ### Data store compatibility{% #data-store-compatibility %} **Datastore tracing provides:** - query info (for example, a sanitized query string) - error and stacktrace capturing ##### Code Security Capability Notes{% #code-security-capability-notes-1 %} - **Runtime Software Composition Analysis (SCA)** is supported on all frameworks. | Framework | Runtime Code Analysis (IAST) | | ---------- | ---------------------------- | | OracleDB | yes | | ADO.NET | yes | | SQL Server | yes | | MySQL | yes | | SQLite | yes |