Catch up on the latest news from Carahsoft and our partner ecosystem


From Carahsoft & Our Partners

Anchore and Carahsoft Partner to Provide Container-Based Security to the Public Sector

Anchore Solutions Now Available on Carahsoft SEWP, U.S. Air Force and Maryland COTS Contracts

SANTA BARBARA, Ca. and RESTON, Va. – July 1, 2020 – Anchore, experts in container workflow, analysis and security, and Carahsoft Technology Corp., The Trusted Government IT Solutions Provider®, today announced a partnership. Under the agreement, Carahsoft will serve as Anchore’s Master Government Aggregator™, making Anchore’s container security inspection platform available to the public sector through Carahsoft’s NASA Solutions for Enterprise-Wide Procurement (SEWP) V and Maryland Commercial Off the Shelf Software (COTS) contracts and the company’s reseller partners. In addition, Anchore is available under Carahsoft’s U.S. Air Force DevSecOps BOA, which is established to support the U.S. Air Force LevelUP mission as well as the DevSecOps goals of the greater Department of Defense (DoD) and related agencies.

“We chose Carahsoft as our Master Government Aggregator based on their ability to effectively address the broad and complex public sector market,” said Craig Bowman, Vice President of Public Sector at Anchore. “Organizations building and deploying cloud-native technologies – including the DoD and civilian agencies such as the DHS, VA, and HHS – need Anchore to manage an increasingly fragmented and dynamic software supply chain. With this partnership, we can use policy-based compliance to secure workflows across the public sector.”

Anchore’s container inspection and analytics platform provides deep container image inspection, analysis, scanning, reporting and verification to ensure that DevSecOps workflows run efficiently without compromise. This offering is comprised of three comprehensive solutions:

  • Anchore Enterprise – A complete container security workflow solution that allows developers to perform detailed comprehensive image analysis to expose risks, unsafe configurations and other vulnerabilities. Enterprise can be implemented through an API or CLI, allowing seamless integration and full access to all of Enterprise’s capabilities.
  • Anchore Engine – An open source tool that provides a centralized service for deep inspection on container images and vulnerability analysis to generate a software bill of materials. This highly customizable tool seamlessly integrates into CI/CD systems and continuously monitors policies when images are updated.
  • Anchore Federal – A policy first container security tool suited for Federal agencies that meet security requirements ranging from DOD-IL-2 to DOD-IL-6. Anchore Federal’s image scanning and analysis provides end-to-end security and compliance that meets TIG and NIST standards and FedRAMP guidelines.

As application modernization and complexity increases, developers are in need of tools that address and analyze container security without compromising momentum. Anchore’s container workflow, analysis and security platform mitigates risks and prevents vulnerabilities to containers while defining and enforcing security policies.

“As container use in agencies’ DevSecOps pipelines continues to rise, the need to protect those containers from threats also increases,” said Natalie Gregory, Vice President of Sales at Carahsoft. “Anchore’s mission to help users create and deploy trusted software quickly and efficiently alleviates those risks. We look forward to working with Anchore and our reseller partners to bring security-first solutions to the public sector.”

The Anchore container-based security platform is available through Carahsoft’s SEWP V contracts NNG15SC03B and NNG15SC27B, U.S. Air Force BOA FA8307-20-G-0004, and Maryland COTS contract 060B2490021. For more information, contact the Anchore team at Carahsoft at (703)-871-8570 or; or register for “Red Hat and Anchore Discuss DevSecOps in the DoD” on Wednesday, July 15, 2020 at 3:00 p.m. EST.

About Anchore

Anchore, Inc., based in Santa Barbara, CA, was founded in 2016 by Saïd Ziouani and Daniel Nurmi to help organizations implement secure container-based workflows using Anchore Engine and Anchore Enterprise. With Anchore, DevSecOps teams establish policy-based approaches to container compliance without compromising velocity. Customers range from Fortune 100 companies to small- and mid-sized customers. Anchore is trusted by modern software development companies across the globe. For more information, visit


Lisa Sheeran

About Carahsoft

Carahsoft Technology Corp. is The Trusted Government IT Solutions Provider®. As a top-performing GSA Schedule and SEWP contract holder, Carahsoft serves as the master government aggregator for many of its best-of-breed technology vendors, supporting an extensive ecosystem of manufacturers, value-added resellers, system integrators and consulting partners committed to helping government agencies select and implement the best solution at the best possible value.

The company's dedicated Solutions Divisions proactively market, sell and deliver Anchore, VMware, Amazon Web Services (AWS), Palo Alto Networks, Symantec, Veritas, McAfee, Dell, Adobe, F5 Networks, Google Cloud, ServiceNow, Open Source, Micro Focus Government Solutions, SAP, Salesforce, and Innovative and Intelligence products and services, among others. Carahsoft is consistently recognized by its partners as a top revenue producer and is listed annually among the industry's fastest growing and largest firms by CRN, Inc., Forbes, Washington Technology, The Washington Post, Washington Business Journal, and Bloomberg Government. Visit us at or follow us on Twitter and Facebook.


Mary Lange
(703) 230-7434

View source version on Globe Newswire