Skip to content
@anchore

Anchore, Inc.

 Mastodon  Twitter   LinkedIn   Anchore Community Discourse 

Welcome 👋

We are Anchore. Securing and managing the software supply chain. Proud parents of Syft and Grype

Blog

We regularly write about what we're working on; here are some recent blog posts:

Community

We discuss our open source tools on Discourse. Here are some recent topics:

Pinned Loading

  1. syft syft Public

    CLI tool and library for generating a Software Bill of Materials from container images and filesystems

    Go 6.7k 612

  2. grype grype Public

    A vulnerability scanner for container images and filesystems

    Go 9.5k 607

  3. scan-action scan-action Public

    Anchore container analysis and scan provided as a GitHub Action

    JavaScript 231 77

  4. sbom-action sbom-action Public

    GitHub Action for creating software bill of materials using Syft.

    TypeScript 176 30

  5. kubernetes-admission-controller kubernetes-admission-controller Public

    Service implementation for a Kubernetes Dynamic Webhook controller for interacting with Anchore

    Go 64 28

  6. anchore-charts anchore-charts Public

    Helm charts for Anchore tools and services

    Python 47 71

Repositories

Showing 10 of 87 repositories
  • vunnel Public

    Tool for collecting vulnerability data from various sources (used to build the grype database)

    anchore/vunnel’s past year of commit activity
    Python 84 Apache-2.0 30 28 (1 issue needs help) 9 Updated Mar 4, 2025
  • enterprise-client-go Public

    Go client for Enterprise API (Not Officially Supported)

    anchore/enterprise-client-go’s past year of commit activity
    Mustache 3 Apache-2.0 1 0 2 Updated Mar 4, 2025
  • binny Public

    Manage a directory of binaries without a package manager

    anchore/binny’s past year of commit activity
    Go 26 Apache-2.0 1 4 12 Updated Mar 4, 2025
  • sbom-action Public

    GitHub Action for creating software bill of materials using Syft.

    anchore/sbom-action’s past year of commit activity
    TypeScript 176 Apache-2.0 30 11 (1 issue needs help) 4 Updated Mar 4, 2025
  • grype Public

    A vulnerability scanner for container images and filesystems

    anchore/grype’s past year of commit activity
    Go 9,458 Apache-2.0 607 284 15 Updated Mar 4, 2025
  • syft Public

    CLI tool and library for generating a Software Bill of Materials from container images and filesystems

    anchore/syft’s past year of commit activity
    Go 6,656 Apache-2.0 612 404 50 Updated Mar 4, 2025
  • vulnerability-match-labels Public

    Labeled vulnerability-package match pairs used as ground truth to evaluate vulnerability scanners

    anchore/vulnerability-match-labels’s past year of commit activity
    Python 11 CC0-1.0 5 3 0 Updated Mar 4, 2025
  • .github Public

    Anchore, Inc

    anchore/.github’s past year of commit activity
    0 0 0 0 Updated Mar 4, 2025
  • anchore/nvd-data-overrides’s past year of commit activity
    Python 47 CC0-1.0 6 1 1 Updated Mar 4, 2025
  • anchore/cve-data-enrichment’s past year of commit activity
    12 CC0-1.0 2 0 0 Updated Mar 4, 2025