We are Anchore. Securing and managing the software supply chain. Proud parents of Syft and Grype
We regularly write about what we're working on; here are some recent blog posts:
- Introducing Anchore Data Service and Anchore Enterprise 5.10 (5 days ago)
- Preparing for a critical vulnerability (1 week ago)
- STIG 101: Insights for Compliance and Cyber Readiness (1 week ago)
- Compliance Requirements for DISA’s Security Technical Implementation Guides (STIGs) (1 week ago)
- Navigating Open Source Software Compliance in Regulated Industries (2 weeks ago)
We discuss our open source tools on Discourse. Here are some recent topics:
- Syft process getting hung (2 days ago)
- PSA: No gardening livestream this week (3 days ago)
- We're going to All Things Open! (3 days ago)
- Grype is showing all critical vulnerabilities even in latest gitlab-ce 17.5.0 docker image are not fixed :( (3 days ago)
- Grype-db - v0.26.0 released (4 days ago)