We are Anchore. Securing and managing the software supply chain. Proud parents of Syft and Grype
We regularly write about what we're working on; here are some recent blog posts:
- SCA vs. SBOM: How They Differ & Why They Work Best as a Team (6 days ago)
- False Positives and False Negatives in Vulnerability Scanning: Lessons from the Trenches (1 week ago)
- NIS2 Compliance with SBOMs: a Scalable, Secure Supply Chain Solution (1 week ago)
- The True Cost of Compliance: Demonstrating the Value of Cybersecurity (2 weeks ago)
- AWS Summit Washington, DC (2 weeks ago)
We discuss our open source tools on Discourse. Here are some recent topics:
- Syft - v1.27.0 released (today)
- June 12th | Open Source Gardening | Live Stream (today)
- Anchore Open Source Weekly Report - Week 24, 2025 (today)
- PSA: No gardening live stream this week (4 days ago)
- Anchore Open Source Weekly Report - Week 22, 2025 (1 week ago)