Anchore Enterprise
by Anchore Inc.
Anchore Enterprise is a comprehensive container security tool purpose-built for policy-based container compliance and software supply chain security delivering deep container image analysis, SBOM management, and compliance enforcement for regulated industries and government organizations that need the highest level of container security assurance with on-premise deployment and FedRAMP authorization.
Starting Price
Enterprise pricing on quote contact anchore.com; mid-market accessible; Grype open source free
G2
Gartner
Capterra
Ratings & Reviews
Key Features
- Container Image Scanning Deep Layer-by-Layer Analysis
- Policy Engine Customizable Container Security Policies
- SBOM Generation & Management CycloneDX & SPDX
- Software Supply Chain Security Image Signing & Verification
- Kubernetes Admission Control Policy-Based Container Gating
- Container Registry Integration Docker Hub
- ECR
- ACR
- GCR
- Harbor
- On-Premise Deployment Air-Gapped Container Security
- Compliance Reporting CIS
- NIST
- PCI
- HIPAA
- DISA STIG
- DISA STIG Compliance Unique U.S. Government Container Standard
- CVE Feed Curation Multiple Vulnerability Data Sources
- CI/CD Integration GitHub
- GitLab
- Jenkins
- CircleCI
- Grype Open Source Scanner Free CVE Scanner by Anchore
- Custom Policy Bundles Organization-Specific Compliance Rules
- Secret Detection Sensitive Data in Container Images
Pros & Cons
Pros
- +Best container security for government and regulated industries DISA STIG container compliance built in (unique to Anchore)
- +FedRAMP authorized + DoD Cloud Computing SRG compliant
- +Air-gapped on-premise deployment for classified environments
- +Policy engine provides the most customizable container compliance rules of any container security tool
- +SBOM management for software supply chain compliance
- +Grype open source CVE scanner free alternative to Trivy
- +Deep layer-by-layer container analysis catches vulnerabilities other scanners miss
- +Blackstone and Salesforce Ventures backing strong financial stability
Cons
- −Less modern UI vs. Snyk and Aqua Security for developer-facing workflows
- −No runtime container protection scanning and compliance only
- −Smaller brand recognition vs. market leaders
- −Less comprehensive cloud posture coverage (CSPM/KSPM) vs. Aqua and Sysdig
- −Best value for compliance-heavy and government environments less compelling for purely commercial DevSecOps
Best For
Government agencies, defense contractors, and regulated enterprises needing the best policy-based container security tool with DISA STIG compliance, FedRAMP authorization, air-gapped deployment, and the most customizable container security policy engine for enforcing organization-specific compliance requirements.
Target Audience
Government, Defense, Financial Services, Healthcare, Regulated Industries Organizations requiring policy-based container compliance
Key Integrations
Competitor Tools
Pricing
Model
Annual subscription per image scan volume or per node; pricing on quote
Starting At
Enterprise pricing on quote contact anchore.com; mid-market accessible; Grype open source free
Free Trial
Yes 30-day trial at anchore.com; Grype open source free at anchore.comCompany Info
Founded
2016
Headquarters
Santa Barbara, CA, USA
Employees
100+
Company Size
Mid-Market & Enterprise (200+ container images; compliance-heavy environments)
Funding
Private Series B; backed by Blackstone, Salesforce Ventures, Dell Technologies Capital. Total raised: ~$62M
Certifications
Awards & Recognition
FedRAMP PMO Authorized | DoD CC SRG Compliant | DISA STIG Approved Container Scanner | SC Awards Best Government Container Security 2025 | Gartner Peer Insights Customers Choice Container Security 2025
Data sourced from G2, Gartner & Capterra · Verified by Firmographic