I’m excited to expand Contrast Assess language coverage to include Kotlin as a general availability language. This new language gives us an even bigger footprint on the Java ecosystem which already includes Java, Scala, Spring, Java/Jakarta EE and many other frameworks. The new Kotlin agent can be used by all Contrast customers at no additional cost or license.

We’ve seen many customers adopt JVM languages ​​such as Kotlin and Scala for the benefits they provide: less code to read and write, easier code reading capability, and the ultimate ability to ship faster.

How Kotlin and Contrast work together

Kotlin is a popular language that runs on top of Java, giving developers the flexibility to write their own libraries or take advantage of the vast Java ecosystem. With Contrast, we leverage this connection using the same Java instrumentation APIs that are available in all Java, Scala, and Kotlin runtimes. This central part of the Kotlin runtime provided the foundation when we worked on Kotlin APIs, semantics, and other ways Kotlin apps differ from Java apps.

When using the Kotlin agent, developers benefit from locations’ vulnerable dependencies (software composition analysis and SBOM) as well as the ability to locate custom code vulnerabilities in their own applications. The Kotlin agent can be downloaded from Contrast Server or Maven Central. A single agent manages Kotlin, Java and Scala together – the agent will detect and engage the appropriate language without the need for configuration or modifications.

Want an engineering partnership?

We are always looking for feedback from Kotlin and Scala developers who are rapidly evolving with their apps. Development partnerships can concern any sector. If you use Spring or Http4k or other Java frameworks, you can still participate.

If you are not yet a Contrast customer, please contact us to discuss your participation. If you are an existing Contrast customer, please request access from your support or customer success representative.