Anchore Enterprise

By Anchore, Inc

Certified enterprise ready

Provides deep container image inspection to generate vulnerability analysis, software bill of materials and policy enforcement.

Purchase

*Requires OpenShift to install

Software version

2.2

Type

Operator

Rating

1 review

Purchase

Certification standards

Capabilities level

Created on

2/14/2020, 12:15 PM

Legal

License agreement

Provides a complete container security workflow solution for development and operations teams. Easily integrating with CI/CD systems, artifact registries or Kubernetes, it allows developers to bolster security without compromising velocity and enables security teams to audit and verify compliance in real time. It is based on Anchore Engine, an open-source image inspection and scanning tool.

Comprehensive container image analysis

Anchore Enterprise looks where other image scanners can’t, going beyond packages and libraries to deeply inspect images for ex- posed secrets, unsafe configuration and bad practices which you can

Automation-centric with 100% API coverage

Every part of the Anchore Enterprise architecture can be accessed through an API or CLI, making it possible for you to take advantage of all of its powerful capabilities wherever they are needed in your pipeline.

Rich policy and compliance language

Use Anchore with out of the box policies like Docker CIS and NIST or customize a bespoke policy using hundreds of rules to ensure that only the containers that meet your exact security standards make it into production.

Additional resources

Want more product information? Explore detailed information about using this product and where to find additional help.

Provider info

Anchore Enterprise

Visit the homepage of the software provider.

Documentation

Getting started

View the Getting started documentation to get up and running.

Help

Getting help

Need help?

Documentation

Anchore Resources

Whitepapers, solution briefs, blogs and webinar content

Community

Anchore Community

Anchore open source development community

Reviews

Read what others are saying about this product in our review section.

Write a review

Peter L.
Head of Worldwide Developer Marketing at Software AG
Verified Current User
Review source: Organic
Verified Current User
Review source: Organic
(0)Apr 28, 2020
"Good quickstart, easy to get started and docker native"
What do you like best?
Very powerful, policy capabilities are a key differentiator which enable it to support real world CI/CD workflows.
What do you dislike?
The CLI requires python to run native, but its docker native so only an issue on my workstation.
Recommendations to others considering the product:
Consider Anchore with complex workflows or more sophisticated requirements. The product has an internal database that supports complex rules for a wide variety of use cases.
What problems are you solving with the product? What benefits have you realized?
It prevents vulnerabilities from shipping and embarrassing the company with key customers.