See our complete list of top container and Kubernetes security vendors
Anchore is based in Santa Barbara, CA, and was founded in 2016 by Saïd Ziouani and Dan Nurmi, co-founders of Eucalyptus Systems and Ansible, respectively.
Anchore is an open platform for container security and compliance that helps developers, operations and security teams discover, analyze, and certify container images on premises and in the cloud. Anchore lets operations and developers perform detailed analysis, run queries, produce reports and define policies on container images that can be used in CI/CD pipelines to ensure that only containers that meet an organization’s requirements are deployed into production.
Developers, operations and security teams working in containerized environments. from enterprises to SMBs.
Anchore Engine: an open source centralized service for performing detailed analysis on container images, running queries, producing reports and defining policies that can be used in CI/CD pipelines. It is available on GitHub and as a Docker container on DockerHub.https://o1.qnsr.com/log/p.gif?;n=203;c=204650406;s=9477;x=7936;f=201801171513530;u=j;z=TIMESTAMP;a=20392955;e=i
Anchore Cloud: the company's SaaS offering, available at anchore.io
Anchore Enterprise: an enterprise-ready, on-premises container security and compliance platform, available at anchore.com/enterprise
All products are built around the following features:
Insight & Analysis: Performs deep analysis on container images including searchable lists of all packages, files and software artifacts such as Ruby GEMs and Node.js modules.
Policy Management: Define policies to certify images, including vulnerabilities, package whitelists, blacklists, configuration files, secrets, manifest changes, exposed ports, or any user-defined checks.
Compliance: Ensures compliance standards and organizational best practices are met by certifying images within the CI/CD pipeline, within container registries, or before images are deployed into production.
Anchore Enterprise is priced per repository scanned.