Anchore Open Source

Developer-friendly open source tools for vulnerability scanning and SBOM generation

syft yellow logo

Syft

A CLI tool for generating a Software Bill of Materials (SBOM) from container images and filesystems

Try It Out

grype green logo

Grype

An easy to use vulnerability scanner for container images and filesystems

Try It Out

Integrations

Extensions & modules that add continuous compliance to any development toolchain

GitLab | Jenkins | Cloudbees | CircleCI | Kubernetes | GitHub Actions | Azure | Bitbucket | VS Code

Open Source Tools for Container Security

Spotlight on Syft And Grype

syft yellow logo

Syft

Syft generates a comprehensive Software Bill of Materials (SBOM) you can use to track dependencies in your project - or discover something you didn't know was hidden within someone else's.

Star on GitHub

grype green logo

Grype

Grype is an open source vulnerability scanning tool that allows you to quickly generate a list of known vulnerabilities that exist within a container image or project directory. Install the Visual Studio Code extension and it'll scan in the background while you code.

Star on GitHub

Open Source Is Who We Are

At Anchore, we believe that software is the key to solving our greatest problems, no matter what they are. Software development as we know it would not be possible without open source developers or their projects.

We believe the essential tools for secure development should be available to everyone. That is why open source is part of every decision we make.

Anchore Open Source Tools For Compliance And Container Security

Anchore Enterprise

Anchore Enterprise builds on top of our open source projects to deliver a continuous compliance and security solution that supports your software development lifecycle with full commercial support from Anchore.

Anchore Product Screenshots

Join The Anchore Community

Github

Get the source code and contribute to the project.

Get the Code

Slack

Join our Slack channel and chat with community members.

Join the Community

Twitter

Follow us on Twitter to stay up to date with new Anchore developments.

Follow Us