A toolset for inspecting, querying, and curating containers
Anchore is a container inspection and analytics platform to enable operators to deploy containers with confidence. The Anchore toolset in this repository provides the ability to inspect, reason about, and evaluate policy against containers present on the local Docker host.
To get started on CentOS 7 as root:
yum install https://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpm
yum install python-pip rpm-python dpkg
To get started on Ubuntu 15.10/16.04 as root:
apt-get install python-pip python-rpm yum
Next, on either distro:
cd <where you checked out anchore>
pip install --upgrade --user .
docker pull nginx:latest
anchore feeds list
anchore feeds sync
anchore analyze --image nginx:latest --imagetype base
anchore audit --image nginx:latest report
anchore query --image nginx:latest has-package curl wget
anchore query --image nginx:latest list-files-detail all
anchore query --image nginx:latest cve-scan all
anchore toolbox --image nginx:latest show
For more information, to learn about how to analyze your own application containers, and how to customize/extend Anchore, please visit our github page wiki at https://github.com/anchore
Man pages for most of the anchore commands are available in: $anchore/doc/man, where $anchore is the install location of the python code for your distro (e.g. /usr/local/lib/python2.7/dist-packages/anchore for ubuntu). To install them, copy them to the appropriate location for your distro. The man pages are generated from –help and –extended-help options to anchore commands, so similar content is available direclty from the CLI as well.
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
|File Name & Checksum SHA256 Checksum Help||Version||File Type||Upload Date|
|anchore-1.1.3-py2-none-any.whl (184.9 kB) Copy SHA256 Checksum SHA256||py2||Wheel||Mar 29, 2017|
|anchore-1.1.3.tar.gz (118.4 kB) Copy SHA256 Checksum SHA256||–||Source||Mar 29, 2017|