Concepts

Policy Bundles and Evaluation
Policy bundles are the unit of policy definition and evaluation in Anchore Engine. A user may have multiple bundles, but for a policy evaluation, the user m...
Wed, 17 Oct, 2018 at 2:30 AM
Policies
Overview A policy is a named set of rules, represented as a JSON object within a Policy Bundle, each of which define a specific check to perform an...
Thu, 2 Aug, 2018 at 10:12 PM
Whitelists
Whitelists provide a mechanism within a policy bundle to explicitly override a policy-rule match. A whitelist is a named set of exclusion rules that match t...
Thu, 2 Aug, 2018 at 10:06 PM
Policy Mappings
Mappings in the policy bundle are a set of rules, evaluated in order, that describe matches on an image, id, digest, or tag and the corresponding sets of po...
Thu, 2 Aug, 2018 at 10:08 PM
Accounts and Users (Engine v0.3.0+)
Overview Anchore Engine provides simple access controls and isolation boundaries by providing accounts and users. Accounts are isolation boundaries for res...
Tue, 13 Nov, 2018 at 10:56 PM
Authorization Plugins
New in Anchore Engine 0.3.0, an open interface for allowing authorization decisions to be made by external plugins has been implemented. The interface is an...
Tue, 13 Nov, 2018 at 10:57 PM