Anchore And GitLab Join Forces To Automate Container Security

The partnership facilitates automated container security and compliance processes through a new integration.

Recently, Anchore announced an integration with GitLab, to automate container security and compliance process and speed application delivery. Anchore also has joined the GitLab partner program.

Source: Anchore

Well,  Anchore is a leading provider of continuous security and compliance for containers. It performs deep container image scanning that discovers vulnerabilities and surfaces a wide range of security and policy infractions, including vulnerabilities and other risks during development.

The integration aims to provide the complete DevSecOps platform, delivered as a single application.

According to the announcement the Anchore and GitLab security integrations will show vulnerability results of container scans directly in GitLab security dashboards; and surface these findings in merge requests that identify changes needed to remediate issues. The integration will also enable updating of merge requests with a package version to resolve vulnerabilities.

"Strengthening the software development security and compliance postures of enterprises and public sector organizations is paramount to the missions of both GitLab and Anchore. We are pleased to partner through this integration to help our joint customers to increase their speed to mission delivery and to reduce the risks associated with software development," said GitLab VP of Global Channels, Michelle Hodges.