• Skip to main content
  • Skip to secondary menu
  • Skip to primary sidebar
  • Skip to secondary sidebar
  • Skip to footer

OSINT.org

Intelligence Matters

  • Sponsored Post
    • Make a Contribution
  • Market Intelligence
    • Technologies
    • Startups
    • Events
  • Domain Intelligence
  • About
  • Contact

Anchore Unveils New Open Source Tools For Automated DevSecOps Pipeline Security

October 6, 2020 By admin Leave a Comment

Anchore, Inc., the leading experts in policy-based workflow and compliance, is launching a collection of new open source tools for automating DevSecOps pipeline security and analysis. Syft and Grype are the first in a collection of tools designed for integration and performance. The tools analyze and scan container images and filesystems, allowing developers to enhance best practices within existing workflows and systems.

As cybersecurity breaches become more numerous and costly, traditional safeguarding tactics grow less effective. Incident response teams are often overwhelmed by having to constantly investigate the cause of previous breaches while developing new preventative measures as the pace of software delivery quickens. With Anchore developers have a unique opportunity to address problems before software is ever deployed and before an incident can occur.

“Our mission at Anchore is to give developers the tools they need to build security into their everyday tasks,” said Anchore CTO Daniel Nurmi. “That means they need to work seamlessly with a large collection of other tools and systems, providing instant results so developers can act immediately. Syft and Grype were designed for exactly that purpose, and are the first of many tools to come.”

Syft analyzes container images and filesystems to create a Software Bill of Materials (SBOM), a comprehensive record of operating system packages and language artifacts. Using Syft, developers can inspect the contents of new software components before deciding to use them and maintain a comprehensive record of the third-party software included in their projects. Syft generates SBOMs that conform to the CycloneDX specification, providing interoperability with a range of software supply chain management tools.

Grype scans container images and filesystems for known vulnerabilities, matching contents against Anchore Feed Service data compiled from multiple public data sources. Developers can use Grype to discover vulnerable components quickly inside projects as they are created and take the appropriate steps for remediation. The Visual Studio Code extension for Grype brings vulnerability scanning directly into the developer’s environment, rescanning projects regularly to watch for emerging vulnerabilities. Developers can easily trigger a Grype vulnerability scan of GitHub projects using the Anchore Container Scan GitHub Action.

“As an open source company, we do research and development in the open,” shared Anchore VP of Product Management Neil Levine. “In recent surveys, customers and community members agreed that security scanning can never be too fast and integration can never be too easy. We are looking forward to seeing how developers and DevOps teams use the tools while we focus on enhancing them with the policy features of our continuous compliance platform, Anchore Enterprise.”

Syft and Grype are available immediately at toolbox.anchore.io. The Visual Studio Code extension can be found in the Visual Studio Marketplace, and the GitHub Action can be found in the GitHub Marketplace. Contributions, feature requests, and issue reports are welcome at the GitHub projects for each tool.

For more information, visit Anchore.

About Anchore
Anchore, Inc., based in Santa Barbara, CA, was founded in 2016 by Saïd Ziouani and Daniel Nurmi to help organizations implement secure container-based workflows using Anchore Enterprise and Anchore Federal. With Anchore, DevSecOps teams establish policy-based approaches to container compliance without compromising velocity. Customers range from Fortune 100 companies to small- and mid-sized customers. Anchore is trusted by modern software development companies across the globe.

SOURCE Anchore

Home

Filed Under: Workflow

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Market Analysis

The Growing Tin Market: Prospects for Future Demand and Sustainability
Prospects for the Growing Lithium Market in the Coming Years
DevOps and Agile: Integrating Development and Operations
China’s Use of Golden Shares: From Reducing State Role to Quietly Controlling Tech Giants
Why Amazon Acquired One Medical: Disrupting the Healthcare Industry with Technology-Enabled Care
The End of an Era: Why China is No Longer Viable as the World’s Factory
Cloudflare’s FedRAMP authorization opens up a huge market opportunity in the US government sector

Opinion

Israel has been used as a bogeyman, erroneously blamed for all Arab ills
Eight European countries have signed a letter urging Big Tech companies to act against foreign information manipulation and interference
China’s Pursuit of an Economy of National Greatness: Ambitions, Risks, and Criticisms
Why VPNs are Essential for Those Living in Non-Democratic Countries
Massive Protests in Israel Against Proposed Judicial Reforms as Lawmakers Prepare for Knesset Vote
Putin has overestimated his negotiating power, repeatedly
All autocratic governments fail to adapt

Secondary Sidebar

Market Research Media

How plunging birthrates threaten national economies
Agile Leadership: Leading Agile Teams for Success
Chinese Brands Reach New Heights of Popularity in the West Amid Growing Political Tensions
Unrestricted Streaming: How VPNs Can Enhance Media Consumption Experience
How the world’s biggest companies have built and defended their moats

Dossier

Agile Coaching: The Key to Successful Agile Implementation
GameTech 2023, GameDev Conference, March 3, 2023
AI is Disrupting Software: Key Takeaways from Tech Summit 2023
indie Semiconductor has entered into a definitive agreement to purchase GEO Semiconductor
Why UK faces chronic labor shortages

Footer

Recent Posts

  • Importance of Communication in Agile Development
  • Unveiling the Power of VPNs: How OSINT Professionals Can Stay Anonymous and Secure Online
  • Vexcel Data Program, the world’s largest aerial imagery program, has announced plans to expand its high-resolution coverage in urban areas
  • How AI will change OSINT
  • China’s Global Expansion: The Quest for Control Over Critical Infrastructure
  • Growing Discontent Among Earthquake Survivors in Turkey Over Government’s Handling of Crisis
  • New app detecting and reporting changes in land use
  • The Perfect Storm: A Not-So-Hypothetical Scenario of Russian Economy Collapse
  • The United States government is reportedly considering new sanctions on Chinese surveillance technology companies
  • The Rise of Biometric Technologies: Implications for Security and Civil Liberties

Analysis

Amid Economic Uncertainty, Businesses Embrace Change, Strengthen Resolve, JPMorgan Chase Survey Finds
Seegene’s COVID-19 test with saliva sample collection feature now available in Europe
Fiverr Opens New Vertical Focused on Data Related Services
What are signs of a global economic downturn?
The Ethics of Data Analysis: Balancing Business Interests with Consumer Privacy

VPNW

AI-Powered VPNs: The Future of Online Privacy and Security
How to Choose the Right VPN for Your Needs
Integrating VPN functionality into a mobile app
Creating a custom VPN protocol
VPN Encryption: How It Works and Why It’s Important

OPINT

Event and Venue Platform OnePlan raises $3.8M
FDA Awards REI System $400M SIRCE IT Modernization Contract
How to foster a culture of belonging and equity where our people can thrive
GA-ATS ORDERS DO-228 FLIGHT SIMULATOR
Rate for shipping a 40ft container from Shanghai to Los Angeles has now fallen by 38%

Calendarial

The Advanced Imaging Society’s 13th Annual Lumiere Awards were held on February 10th, 2023 at the Beverly Hills Hotel
The Falvey Insurance Group will host the first event of its 2023 “Women at the Helm” speaker series on International Women’s Day
Phenom to Bring Together the World of HR at IAMPHENOM 2023 in Philadelphia, March 28-30, 2023
Today is International Day of Commemoration in memory of the victims of the Holocaust, Jan 27, 2023
SiliCon, the Bay Area’s largest Comic Con and Maker Con, October 14-15 2023, Santa Clara Convention Center

Copyright © 2022 OSINT.org

Technologies, Market Analysis & Market Research and Exclusive Domains

We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of ALL the cookies.
Do not sell my personal information.
Cookie SettingsAccept
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checkbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT