Jeremy Valance

Benefits of Static Image Inspection and Policy Enforcement

In this post, I will dive deeper into the key benefits of a comprehensive container image inspection and policy as code framework A couple of key terms: Comprehensive Container Image Inspection: Complete analysis of a container image to identify it’s entire contents: OS & non-OS packages, libraries, licenses, binaries, credentials, secrets, and metadata. Importantly: storing …

Benefits of Static Image Inspection and Policy Enforcement Read More »

Anchore Enterprise 2.1 Feature Series: Enhanced Vulnerability Data

With the release of Anchore Enterprise 2.1 (based on Anchore Engine 0.5.0), we are pleased to announce that Anchore Enterprise customers will now receive access to enhanced vulnerability data from Risk Based Security’s VulnDB for increased fidelity, accuracy, and live-ness of image vulnerability scanning results. Recognizing that container images need an added layer of security, …

Anchore Enterprise 2.1 Feature Series: Enhanced Vulnerability Data Read More »

Using Anchore to identify secrets in container images

Building containerized applications inherently brings up the question of how to best give these applications access to any sensitive information they may need. This sensitive information can often be in the form of secrets, passwords, or other credentials. This week I decided to explore a couple of bad practices / common shortcuts and some simple …

Using Anchore to identify secrets in container images Read More »

Securing Multi-Cloud Environments with Anchore

Introduction Many organizations today are currently leveraging multiple cloud providers for their cloud-native workloads. An example of such could be, a mix of several public cloud providers such as AWS, GCP, or Azure. Or perhaps a combination of a private cloud such as OpenStack, along with any public cloud provider. By definition, multi-cloud is a …

Securing Multi-Cloud Environments with Anchore Read More »