Anchore Open Source Engine

An Open Container Certification Platform

Install Anchore

Documentation

What Anchore Does

 

cropped-mark.png

The Anchore Engine allows developers to perform detailed analysis on their container images, run queries, produce reports and define policies that can be used in CI/CD pipelines. Developers can extend the tool to add new plugins that add new queries, new image analysis, and new policies.

Anchore Cloud aggregates security data from several 3rd party feeds. The Anchore Engine regularly synchronizes this data from the Anchore Cloud

Developers and Operators can manage the Anchore Engine through a CLI or REST api

The Anchore Engine monitors container registries for new images and tags, which are pulled locally for analysis

The Anchore Engine can integrate to 3rd party platforms through the API and WebHooks

What You Can Do with Anchore

Explore some of the most popular Anchore commands

Submit an Image to be Analyzed

anchore-cli image add library/debian:latest

See if your images have any known CVE vulnerabilities

anchore-cli image vuln myrepo/app:latest os

List all of the files in a particular image

anchore-cli image content myrepo/app:latest files

Evaluate your image against your custom security policy

anchore-cli evaluate check myrepo/app:latest

Subscribe to receive notifications when an image is updated

anchore-cli subscription activate tag_update library/debian:latest

How to Contribute to Anchore

There are several ways to contribute to the Anchore Project and Community

Contributing Code

We encourage contributions to any part of the open-source Anchore command-line tool, whether they be to the tool framework itself or as individual analyzer/gate or query modules that can be dropped in to existing Anchore installations.

Anchore is using the Apache 2 license. For more contribution information, please see the LICENSE and CONTRIBUTING documents in the main github anchore project page. The easiest way to contribute to Anchore is to build a new Analyzer, Gate, or Query module. These are simple, self-contained modules that implement a certain kind of functionality within the broader Anchore framework. You can about how to build these modules on our wiki.

Reporting Bugs

If you’ve found a bug in Anchore and you’d like to report it to us, please use the GitHub issue tracking system. We would appreciate as much detail as you can provide, including the version of Anchore you are using, your method of installation (OS packages, PIP, source?), what version of Docker you are using, as well as any troubleshooting steps you’ve already attempted.

If you are using Anchore for production in a commercial environment, you may want to consider a full support contract so that we can provide a Service Level Agreement for your deployment.

Other Contributions

We encourage contributions to any part of the open-source Anchore command-line tool, whether they be to the tool framework itself or as individual analyzer/gate or query modules that can be dropped into existing Anchore Installations.

Anchore is using the Apache 2 license. For more contribution information, please see the LICENSE and CONTRIBUTING documents in the main github anchore project page. The easiest way to contribute to Anchore is to build a new Analyzer, Gate, or Query module. These are simple, self-contained modules that implement a certain kind of functionality within the broader Anchore framework. You can about how to build these modules on our wiki.

Support for Anchore Engine

We offer commercial support for Anchore, extending your team to provide the expertise and experience necessary to deploy and maintain the Anchore Engine in your environment.

Our support team will help you with through installation, configuration, and integration of Anchore with CI/CD platforms such as Jenkins as well as provide architectural recommendations and help creating policies, debugging, troubleshooting and more.


Join the Community

Click here to get the source code and contribute to the project

Email [email protected] to join our slack channel and chat live with members of the Anchore community

Follow us on Twitter to stay up to date with everything anchore