AnkerCode

Ruhe vor dem Audit. Scan your repo, get a German-language PDF your CTO actually understands — without a single line of source code leaving the machine.

Get Started CLI Reference

What AnkerCode does

Local-First Scanning

Wraps Syft, Trivy, and Gitleaks. Runs entirely on your machine. Source code never leaves.

CycloneDX SBOM

Generates a compliant Software Bill of Materials in CycloneDX format, ready for BSI TR-03183.

German PDF Report

One command produces an audit-ready PDF in German — SBOM summary, CVEs by severity, license risk, VEX statements.

Triage Workflow

Decisions live in ankercode.decisions.yaml committed to your repo, making every report fully reproducible.