What does the scan command analyze?

Answer

The scan analyzes: runtime versions (Node.js, .NET, Python, Java), framework versions (React, Next.js, Angular, Vue, NestJS, etc.), all dependencies from package.json, .csproj, requirements.txt, or pom.xml, lockfile data (duplicates, phantom deps), TypeScript configuration (strict mode, module system), and end-of-life risk for runtimes. Core analysis reads only manifest/config files — no source code execution.