Skip to content
@anchore

Anchore, Inc.

 Mastodon  Twitter   LinkedIn   Anchore Community Discourse 

Welcome 👋

We are Anchore. Securing and managing the software supply chain. Proud parents of Syft and Grype

Blog

We regularly write about what we're working on; here are some recent blog posts:

Community

We discuss our open source tools on Discourse. Here are some recent topics:

Pinned Loading

  1. syft syft Public

    CLI tool and library for generating a Software Bill of Materials from container images and filesystems

    Go 6.4k 587

  2. grype grype Public

    A vulnerability scanner for container images and filesystems

    Go 9.1k 587

  3. scan-action scan-action Public

    Anchore container analysis and scan provided as a GitHub Action

    JavaScript 221 77

  4. sbom-action sbom-action Public

    GitHub Action for creating software bill of materials using Syft.

    TypeScript 172 30

  5. kubernetes-admission-controller kubernetes-admission-controller Public

    Service implementation for a Kubernetes Dynamic Webhook controller for interacting with Anchore

    Go 64 27

  6. anchore-charts anchore-charts Public

    Helm charts for Anchore tools and services

    Python 47 72

Repositories

Showing 10 of 85 repositories
  • .github Public

    Anchore, Inc

    anchore/.github’s past year of commit activity
    0 0 0 0 Updated Dec 25, 2024
  • vunnel Public

    Tool for collecting vulnerability data from various sources (used to build the grype database)

    anchore/vunnel’s past year of commit activity
    Python 82 Apache-2.0 29 30 (1 issue needs help) 8 Updated Dec 24, 2024
  • yardstick Public

    Compare vulnerability scanners results (to make them better!)

    anchore/yardstick’s past year of commit activity
    Python 16 Apache-2.0 4 4 0 Updated Dec 24, 2024
  • anchore/nvd-data-overrides’s past year of commit activity
    Python 47 CC0-1.0 5 1 0 Updated Dec 24, 2024
  • anchore/cve-data-enrichment’s past year of commit activity
    10 CC0-1.0 0 0 0 Updated Dec 24, 2024
  • k8s-inventory Public

    Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-use

    anchore/k8s-inventory’s past year of commit activity
    Go 64 Apache-2.0 15 4 6 Updated Dec 24, 2024
  • grype-db Public
    anchore/grype-db’s past year of commit activity
    Go 39 Apache-2.0 15 12 (1 issue needs help) 4 Updated Dec 24, 2024
  • grype Public

    A vulnerability scanner for container images and filesystems

    anchore/grype’s past year of commit activity
    Go 9,084 Apache-2.0 587 277 18 Updated Dec 24, 2024
  • stereoscope Public

    go library for processing container images and simulating a squash filesystem

    anchore/stereoscope’s past year of commit activity
    Go 85 Apache-2.0 47 19 6 Updated Dec 23, 2024
  • syft Public

    CLI tool and library for generating a Software Bill of Materials from container images and filesystems

    anchore/syft’s past year of commit activity
    Go 6,410 Apache-2.0 587 384 39 Updated Dec 24, 2024