{"id":19368480,"url":"https://github.com/anchore/anchore-charts","last_synced_at":"2026-04-01T18:39:22.421Z","repository":{"id":37484258,"uuid":"160838120","full_name":"anchore/anchore-charts","owner":"anchore","description":"Helm charts for Anchore tools and services","archived":false,"fork":false,"pushed_at":"2025-09-25T14:08:45.000Z","size":2586,"stargazers_count":50,"open_issues_count":34,"forks_count":73,"subscribers_count":21,"default_branch":"main","last_synced_at":"2025-09-25T16:12:03.436Z","etag":null,"topics":["helm","helm-charts","kubernetes","security","security-vulnerability-assessment"],"latest_commit_sha":null,"homepage":"http://charts.anchore.io","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/anchore.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.rst","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":"CODEOWNERS","security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2018-12-07T15:02:02.000Z","updated_at":"2025-09-21T23:58:04.000Z","dependencies_parsed_at":"2023-12-13T04:31:06.741Z","dependency_job_id":"646b2c40-e697-40b5-8820-46b6c791db7c","html_url":"https://github.com/anchore/anchore-charts","commit_stats":null,"previous_names":[],"tags_count":337,"template":false,"template_full_name":null,"purl":"pkg:github/anchore/anchore-charts","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/anchore%2Fanchore-charts","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/anchore%2Fanchore-charts/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/anchore%2Fanchore-charts/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/anchore%2Fanchore-charts/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/anchore","download_url":"https://codeload.github.com/anchore/anchore-charts/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/anchore%2Fanchore-charts/sbom","scorecard":{"id":403172,"data":{"date":"2025-08-18T18:27:07Z","repo":{"name":"github.com/anchore/anchore-charts","commit":"81c80820986636177e5de25c1c52255bfc686a56"},"scorecard":{"version":"v5.0.0-rc2","commit":"7ce8609469289d5f3b1bf5ee3122f42b4e3054fb"},"score":5.7,"checks":[{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/7ce8609469289d5f3b1bf5ee3122f42b4e3054fb/docs/checks.md#binary-artifacts"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/7ce8609469289d5f3b1bf5ee3122f42b4e3054fb/docs/checks.md#branch-protection"}},{"name":"CI-Tests","score":10,"reason":"15 out of 15 merged PRs checked by a CI test -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project runs tests before pull requests are merged.","url":"https://github.com/ossf/scorecard/blob/7ce8609469289d5f3b1bf5ee3122f42b4e3054fb/docs/checks.md#ci-tests"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/7ce8609469289d5f3b1bf5ee3122f42b4e3054fb/docs/checks.md#cii-best-practices"}},{"name":"Code-Review","score":9,"reason":"Found 14/15 approved changesets -- score normalized to 9","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/7ce8609469289d5f3b1bf5ee3122f42b4e3054fb/docs/checks.md#code-review"}},{"name":"Contributors","score":10,"reason":"project has 14 contributing companies or organizations","details":["Info: anchore contributor org/company found, edera contributor org/company found, eucalyptus contributor org/company found, chainguard-dev contributor org/company found, helm contributor org/company found, davidkarlsen.com contributor org/company found, wolfi-dev contributor org/company found, chainguard-images contributor org/company found, sonatype-nexus-community contributor org/company found, aurora contributor org/company found, sigma defense contributor org/company found, gliderlabs contributor org/company found, mojohaus contributor org/company found, kubernetes contributor org/company found, "],"documentation":{"short":"Determines if the project has a set of contributors from multiple organizations (e.g., companies).","url":"https://github.com/ossf/scorecard/blob/7ce8609469289d5f3b1bf5ee3122f42b4e3054fb/docs/checks.md#contributors"}},{"name":"Dangerous-Workflow","score":0,"reason":"dangerous workflow patterns detected","details":["Warn: script injection with untrusted input ' github.event.pull_request.head.ref ': .github/workflows/openshift-test.yaml:106","Warn: script injection with untrusted input ' github.event.pull_request.head.ref ': .github/workflows/openshift-test.yaml:140","Warn: script injection with untrusted input ' github.event.pull_request.head.ref ': .github/workflows/test.yaml:84","Warn: script injection with untrusted input ' github.event.pull_request.head.ref ': .github/workflows/test.yaml:110","Warn: script injection with untrusted input ' github.event.pull_request.head.ref ': .github/workflows/test.yaml:119"],"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/7ce8609469289d5f3b1bf5ee3122f42b4e3054fb/docs/checks.md#dangerous-workflow"}},{"name":"Dependency-Update-Tool","score":0,"reason":"no update tool detected","details":["Warn: no dependency update tool configurations found"],"documentation":{"short":"Determines if the project uses a dependency update tool.","url":"https://github.com/ossf/scorecard/blob/7ce8609469289d5f3b1bf5ee3122f42b4e3054fb/docs/checks.md#dependency-update-tool"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/7ce8609469289d5f3b1bf5ee3122f42b4e3054fb/docs/checks.md#fuzzing"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/7ce8609469289d5f3b1bf5ee3122f42b4e3054fb/docs/checks.md#license"}},{"name":"Maintained","score":10,"reason":"30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/7ce8609469289d5f3b1bf5ee3122f42b4e3054fb/docs/checks.md#maintained"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/7ce8609469289d5f3b1bf5ee3122f42b4e3054fb/docs/checks.md#packaging"}},{"name":"Pinned-Dependencies","score":7,"reason":"dependency not pinned by hash detected -- score normalized to 7","details":["Warn: third-party GitHubAction not pinned by hash: .github/workflows/openshift-test.yaml:78","Warn: third-party GitHubAction not pinned by hash: .github/workflows/openshift-test.yaml:201","Warn: pipCommand not pinned by hash: scripts/enterprise-value-converter/Dockerfile:10","Warn: npmCommand not pinned by hash: scripts/hooks/readme-generator.sh:18","Warn: pipCommand not pinned by hash: .github/workflows/values-converter-tests.yaml:25","Warn: pipCommand not pinned by hash: .github/workflows/values-converter-tests.yaml:26","Info:  12 out of  12 GitHub-owned GitHubAction dependencies pinned","Info:  17 out of  19 third-party GitHubAction dependencies pinned","Info:   1 out of   1 containerImage dependencies pinned","Info:   0 out of   3 pipCommand dependencies pinned","Info:   0 out of   1 npmCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/7ce8609469289d5f3b1bf5ee3122f42b4e3054fb/docs/checks.md#pinned-dependencies"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 30 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/7ce8609469289d5f3b1bf5ee3122f42b4e3054fb/docs/checks.md#sast"}},{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: github.com/anchore/.github/SECURITY.md:1","Info: Found linked content: github.com/anchore/.github/SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: github.com/anchore/.github/SECURITY.md:1","Info: Found text in security policy: github.com/anchore/.github/SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/7ce8609469289d5f3b1bf5ee3122f42b4e3054fb/docs/checks.md#security-policy"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact enterprise-3.14.0 not signed: https://api.github.com/repos/anchore/anchore-charts/releases/240688510","Warn: release artifact ecs-inventory-0.0.13 not signed: https://api.github.com/repos/anchore/anchore-charts/releases/238646779","Warn: release artifact enterprise-3.13.0 not signed: https://api.github.com/repos/anchore/anchore-charts/releases/238121073","Warn: release artifact enterprise-3.12.3 not signed: https://api.github.com/repos/anchore/anchore-charts/releases/237512217","Warn: release artifact k8s-inventory-0.5.7 not signed: https://api.github.com/repos/anchore/anchore-charts/releases/236623106","Warn: release artifact enterprise-3.14.0 does not have provenance: https://api.github.com/repos/anchore/anchore-charts/releases/240688510","Warn: release artifact ecs-inventory-0.0.13 does not have provenance: https://api.github.com/repos/anchore/anchore-charts/releases/238646779","Warn: release artifact enterprise-3.13.0 does not have provenance: https://api.github.com/repos/anchore/anchore-charts/releases/238121073","Warn: release artifact enterprise-3.12.3 does not have provenance: https://api.github.com/repos/anchore/anchore-charts/releases/237512217","Warn: release artifact k8s-inventory-0.5.7 does not have provenance: https://api.github.com/repos/anchore/anchore-charts/releases/236623106"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/7ce8609469289d5f3b1bf5ee3122f42b4e3054fb/docs/checks.md#signed-releases"}},{"name":"Token-Permissions","score":10,"reason":"GitHub workflow tokens follow principle of least privilege","details":["Warn: jobLevel 'contents' permission set to 'write': .github/workflows/deploy.yaml:17","Info: jobLevel 'contents' permission set to 'read': .github/workflows/helm-unittests.yaml:17","Info: jobLevel 'contents' permission set to 'read': .github/workflows/scorecards.yml:29","Info: jobLevel 'actions' permission set to 'read': .github/workflows/scorecards.yml:30","Info: topLevel 'contents' permission set to 'read': .github/workflows/deploy.yaml:12","Info: found token with 'none' permissions: .github/workflows/helm-unittests.yaml:1","Info: topLevel 'contents' permission set to 'read': .github/workflows/lint.yaml:9","Info: topLevel 'contents' permission set to 'read': .github/workflows/openshift-test.yaml:12","Info: topLevel permissions set to 'read-all': .github/workflows/scorecards.yml:18","Info: topLevel 'contents' permission set to 'read': .github/workflows/test.yaml:9","Info: topLevel 'contents' permission set to 'read': .github/workflows/values-converter-docker.yaml:11","Info: topLevel 'contents' permission set to 'read': .github/workflows/values-converter-tests.yaml:9"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/7ce8609469289d5f3b1bf5ee3122f42b4e3054fb/docs/checks.md#token-permissions"}},{"name":"Vulnerabilities","score":10,"reason":"0 existing vulnerabilities detected","details":null,"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/7ce8609469289d5f3b1bf5ee3122f42b4e3054fb/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-18T20:33:46.525Z","repository_id":37484258,"created_at":"2025-08-18T20:33:46.526Z","updated_at":"2025-08-18T20:33:46.526Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":278486271,"owners_count":25994941,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-10-05T02:00:06.059Z","response_time":54,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["helm","helm-charts","kubernetes","security","security-vulnerability-assessment"],"created_at":"2024-11-10T08:06:42.211Z","updated_at":"2025-10-05T16:43:43.366Z","avatar_url":"https://github.com/anchore.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Anchore Helm Charts\n\nThis repository contains Helm charts for deploying [Anchore](https://www.anchore.com/) software on Kubernetes.\n\n## Prerequisites\n\n- [Helm](https://helm.sh/) (\u003e=3.8) - Helm is a package manager for Kubernetes that makes it easy to install and manage applications on your cluster.\n- [Kubernetes](https://kubernetes.io/) (\u003e=1.23) - Kubernetes is an open-source container orchestration platform that is required to use Helm charts.\n- [pre-commit](https://pre-commit.com/) (\u003e=3.4) - pre-commit is a tool that is used to ensure that all commits to the repository are properly formatted. It is not required to use the charts in this repository, but it is recommended to install it to ensure that your commits are properly formatted.\n\n## Installation\n\nTo use the charts in this repository, you will need to add it to your Helm repositories list. You can do this using the `helm repo add` command:\n\n```bash\nhelm repo add anchore https://charts.anchore.io\n```\n\nOnce the repository has been added, you can use the `helm search` command to view a list of available charts:\n\n```bash\nhelm search repo anchore\n```\n\nTo install a chart, use the `helm install` command and specify the chart name and any required values:\n\n```bash\nRELEASE_NAME=\"my-release\"\nCHART_NAME=\"anchore/enterprise\"\n\nhelm install \"$RELEASE_NAME\" \"$CHART_NAME\" --values values.yaml\n```\n\n### Installing from source\n\nIt can be useful when developing to install a chart directly from the source code. To do this you must first download all dependent charts, then you are able to install from the chart directory.\n\n```bash\nRELEASE_NAME=\"my-release\"\nCHART_PATH=\"anchore-charts/stable/enterprise\"\n\ngit clone https://github.com/anchore/anchore-charts.git\ncd \"$CHART_PATH\"\nhelm dependency up\nhelm install \"$RELEASE_NAME\" . --values values.yaml\n```\n\n## Configuration\n\nThe charts in this repository include a number of configuration options that can be set using the `--values` flag when installing the chart. For a full list of configuration options, see the chart's `values.yaml` file.\n\n## Contributing\n\nWe welcome contributions to the Anchore Helm charts repository. If you have a chart change that you would like to share, please submit a pull request with your change and any relevant documentation.\n\nAll commits must be signed with the DCO as defined in [CONTRIBUTING](./CONTRIBUTING.rst). In git this can be done using the '-s' flag on commit.\n\n## Testing\n\nThis project uses GitHub Actions and the [Helm Chart Testing](https://github.com/helm/chart-testing) tool to test chart changes. When a pull request is opened, the testing workflow will run to ensure that the charts are properly formatted and can be installed on a Kubernetes cluster.\n\nAll charts are tested against a range of Kubernetes versions. This version range roughly tracks the supported versions available from the major cloud vendors and is close, but not exactly the same as, the Kubernetes support N-3 approach.\n\nWe aim to have at least the .0 patches for the releases for predictability and stability of the tests so that they do not have to change with each patch update. However, specific patches may be chosen for compatibility with the test harness (kindest/node) and if there is a specific bug fixed in a K8s release that has material impact on the results of a chart test.\n\n## Support\n\nIf you have any questions or need assistance with the charts in this repository, please visit the [Anchore documentation](https://docs.anchore.com/) or contact the Anchore support team through the [Anchore support site](https://support.anchore.com/hc/en-us).\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fanchore%2Fanchore-charts","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fanchore%2Fanchore-charts","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fanchore%2Fanchore-charts/lists"}