The Anchore Container Scan Action for GitHub
Anchore makes it easy to integrate deep image inspection and powerful security scanning into your GitHub workflows. Define custom policies, create a comprehensive software bill-of-materials, and start shipping better images with the Anchore Container Scan Action.
Top Brands Trust Anchore
Open Source Container Inspection and Analysis
The Anchore project allows developers to perform detailed analysis on their container images, run queries, produce reports and define policies that can be used in CI/CD pipelines. Developers can extend the tool to add new plugins that add new queries, new image analysis, and new policies.