An open source tool for deep image inspection and vulnerability scanning
Use Anchore Across Multiple Platforms
What Anchore Open Source Does
Anchore Engine allows developers to perform detailed analysis on container images, generating a software bill of materials. Through seamless integration with CI/CD systems, Anchore Engine can prevent publication of images containing known vulnerabilities.
Anchore Engine is fully-featured and flexible, and can work within a wide variety of environments and development pipelines.
Install Anchore Engine
With a working deployment of Docker and a few simple commands, you can get up and running in less than 5 minutes.
What You Can Do with Anchore
Explore some of the most popular Anchore commands
anchore-cli image add library/debian:latest
anchore-cli image vuln myrepo/app:latest os
anchore-cli image content myrepo/app:latest files
anchore-cli evaluate check myrepo/app:latest
Integrate Anchore with your favorite CI/CD Systems, Orchestration Platforms, and more.
By integrating Anchore and Kubernetes you can ensure that only trusted and secure images are deployed and run in your Kubernetes environment
Anchore has been designed to plug seamlessly into CI/CD pipelines to add deep image inspection, compliance and governance to your workflow.
Get Started with Anchore Today
Read the Quick Start guide to get up and running fast, or consult the documentation to see how Anchore can work for you
Join the Anchore Community
Ask questions, engage with Anchore users, contribute code, and let us know what you think