Events

Feb 19,2025

Increase Supply Chain Transparency & Security with Harbor and Anchore

Many of our security and compliance first enterprise customers are utilizing the CNCF graduated project Harbor as their open source registry to consistently and securely manage artifacts across their cloud native platforms and deployment targets.

While Harbor often ensures compliance with internal security policies across multiple locations for on premise workloads, many development and security teams need an additional container scanner in order to uncover vulnerabilities, malware and secrets as well as put effective policy enforcement in place.

Anchore Enterprise and Harbor together allow for a proactive security and compliance approach for development and security teams.

Dan Perry and Josh Sopuru from the Anchore Customer Success team will demonstrate in a show and tell:

How Harbor and Anchore Enterprise’ SBOM capabilities provide transparency and visibility on security issues.
How to automate scans and enable continuous monitoring.
How to schedule scans, scan-on-push triggers and image deployment prevention on detected vulnerabilities.
Practical tips on how to optimize registry config to maximize security.

Download the Live Webinar

Visually hidden

Feb 20, 12 PST

Join Anchore Open Source Team: Live Stream

Join us on Thursdays for “Open Source Gardening,” a live stream where the Developer Relations team works with the Engineering minds behind Anchore’s open-source tools, Syft, Grype, and the rest of the family.

We will spend a relaxed hour working on issues and pull requests. There will be technical discussions, some roadmap planning, and audience questions. Every week we stream live on the Anchore YouTube channel.

Visually hidden

February 26, 9AM PST

Trust in the Supply Chain: CycloneDX Attestations & SBOMs

Join us for the next webinar in our Understanding SBOMs webinar series where Steve Springett, an OWASP Board Member and CycloneDX Core Working Group Chair, and Alan Pope of Anchore will explore how CycloneDX revolutionizes software supply chain security through machine-readable attestations and advanced SBOM capabilities.

As software supply chain attacks continue to rise, the need for verifiable trust in our software components has never been more critical. Building on the foundation of SBOMs, Steve will demonstrate how CycloneDX’s attestation capabilities address this challenge by enabling organizations to create cryptographically verifiable evidence of their security practices, automating traditionally manual audit workflows while maintaining accuracy and trustworthiness.

Trust in the Software Supply Chain: CycloneDX Attestations & SBOMs

Compliance Automation: Learn how to transform manual audit processes into automated workflows using CycloneDX attestations.
Standards Integration: Understand how CycloneDX integrates with existing security standards and frameworks.
Trust Verification: Discover how to implement verifiable trust in your software supply chain.
Future Roadmap: Get insights into upcoming CycloneDX features and capabilities.

Visually hidden

March 18, 9AM PST

STIG in Action: Continuous Compliance with MITRE & Anchore

Join us for part two of our STIG webinar series in partnership with MITRE. We’ll discuss the latest NIST 800-53 and FedRAMP guidance that requires STIG adherence and how this protocol creates new demands on security and operations teams. Our hosts will share insights into how these new demands can be met with security tools that automate STIG compliance. Attendees will learn actionable steps on how to get rid of their traditional spreadsheets and paper binders as Anchore and MITRE hosts explore next generation STIG tooling and guidance.

Hosts Aaron Lippold, Chief Architect at MITRE, and Josh Bressers, VP of Security at Anchore, will demo how to:

Remediate STIG findings in container images

Automate reporting and replace traditional paper files

Speak with our security experts

Learn how Anchore’s SBOM-powered platform can help secure your software supply chain.