Events
Join Anchore Open Source Team: Live Stream
Join us on Thursdays for “Open Source Gardening,” a live stream where the Developer Relations team works with the Engineering minds behind Anchore’s open-source tools, Syft, Grype, and the rest of the family.
We will spend a relaxed hour working on issues and pull requests. There will be technical discussions, some roadmap planning, and audience questions. Every week we stream live on the Anchore YouTube channel.
SBOM or Bust: Automating compliance for EU CRA & Beyond
Let’s be honest: keeping up with cybersecurity regulations feels like a full-time job. Between the EU Cyber Resilience Act (CRA), Payment Card Industry Data Security Standard (PCI DSS), NIS2, NIST’s Secure Software Development Framework (SSDF), and FedRAMP, security and compliance engineers are being buried in a mountain of complex, mandatory requirements. It’s no longer just about checking a box; it’s about proving—with machine-readable evidence—that your software supply chain isn’t a liability.
In this session, Roman Zhukov, Open-Source Security Strategy at RedHat, Dr. Andreas Kotulla, Founder & CEO of Bitsea, and Alex Rybak, Sr. Director of Product from Anchore, are discussing:
- CRA Survival Guide
- SBOMs as a Secret Weapon
- Automating Compliance Processes
- Anchore v6 Sneak Peek
- A Real-World Playbook
Eliminating the “Security Tax” with Anchore Enterprise v6
With the US’s Cyber Executive Order and EU’s Cyber Resilience Act (CRA), manual security defense is no longer sustainable. Organizations must now provide auditable, real-time proof of compliance for every digital element they ship.
Join Alex Rybak, Anchore’s Senior Director of Product Management, for an exclusive look at Anchore Enterprise v6, where we demonstrate how we transform the Software Bill of Materials (SBOM) from a static inventory into a powerful application-context engine designed to automate compliance and risk management across the entire software lifecycle.
We will demo:
- Unified security management to remove the manual burden of producing evidence for standards like CRA, FDA, and FedRAMP
- Visibility across legacy and modern cloud applications for one-click unified SBOMs
- Expanded Scanning Coverage via filesystems for source repositories, build artifacts, and VMs
- Higher precision triage with Anchore Score and VEX to cut through noise
- Management of Third-Party Risk as you ingest vendor-provided SBOMs