Forging the future of software security.
The core of Anchore.
Kindness, openness and ownership inspire our people-friendly culture.
Headquartered in Santa Barbara, California, Anchore is a remote-friendly company with our team of Anchorenauts hailing from all over the United States and Europe.
Guided by our core values of kindness, openness, and ownership, we empower each other to continuously grow and relish our differences—seeing diverse backgrounds and perspectives as a source of strength.
We’re passionate about protecting software supply chains by making it easier for developers and security teams to deliver secure cloud-native software. Together, we’ve built a platform and open source tools that help organizations secure the software they build without compromising velocity.
Anchore is one of few container security companies that are approved as part of the DoD Enterprise DevSecOps initiative and a key component for ensuring the security and compliance of software containers within the DoD Iron Bank
Anchore has proven to be a valuable tool, helping to ensure that the Cisco Container Platform matches our compliance standards.
We use Anchore Engine to enforce security and compliance checking for production container workloads distributed across dozens of Kubernetes clusters.
Actions like Anchore Container Scan are exactly why we built GitHub Actions. By making it easy for developers to build security directly into their workflows, it helps them ship better code more quickly.
Our use of Anchore’s scanning technology can help reassure developers that the containers on NGC have been evaluated for critical security risks before they’ve been put into production.
We are pleased to partner through this integration to help our joint customers to increase their speed to mission delivery and to reduce the risks associated with software development.
“Teaming with Anchore to shape the container hardening process for Platform One has been highly successful. Anchore’s strong understanding of our goals has translated into strong support for adoption of modern DevSecOps practices..”
Anchore is a top-notch tool for mapping the most relevant CVE to software version and creating custom policy checks and their support team is one of the best we’ve encountered.