Enterprise Grade

Accrue Secure Images

Minimize security vulnerability windows. Accrue Secure Images delivers hardened container images, Helm charts, and virtual appliances with automated continuous patching, CIS compliance benchmarking, and transparent SBOM metadata.

Request Sales Demo Inspect SBOM Schema
Secure Images

Continuous vulnerability remediation

We monitor major security databases (NVD, CVE, GHSA) and immediately trigger package builds when vulnerabilities are detected. Our automated pipeline compiles, test-deploys, and verifies packages before signing them.

Under 24h SLA

High and Critical severity CVEs are patched, rebuilt, and pushed to your private registry within 24 hours of upstream release.

Complete Version Retention

Maintain immutable repositories of historically compiled images to ensure compatibility and easy rollbacks in your deployment cycles.

Vulnerability Scanning

Cryptographic and benchmark compliance

Designed for highly regulated sectors like finance, government, and healthcare. Our build systems ensure compliance parameters are hardcoded directly into baseline images.

  • FIPS 140-2 Cryptography: SSL modules and databases compiled with FIPS-validated cryptographic libraries.
  • CIS Benchmarks Hardening: Configured following Center for Internet Security guidelines to eliminate common exploit paths.
  • Non-Root User Execution: All containers execute using non-root IDs to protect container runtimes from privilege escalation.
CIS-BENCHMARK-AUDIT.LOG PASSED

[INFO] Initializing CIS Hardening Checks...

[PASS] Check 1.1: Ensure root user execution disabled

[PASS] Check 1.2: Check baseline SSH capabilities removed

[PASS] Check 2.1: Verify TLS 1.3 cryptographic cipher suites

[PASS] Check 3.0: Read-only root file systems validated

[OK] Image compliance check completed successfully.

Software Bill of Materials (SBOM)

Complete software supply chain transparency. Select a package format to inspect a mock of our machine-readable CycloneDX SBOM metadata payload.

pkg:docker/accrue/postgresql@16.2 
{
  "bomFormat": "CycloneDX",
  "specVersion": "1.5",
  "serialNumber": "urn:uuid:3e078920-9f23-4411-bc6e-a34237f8f901",
  "version": 1,
  "metadata": {
    "timestamp": "2026-05-23T12:00:00Z",
    "component": {
      "type": "container",
      "name": "postgresql",
      "version": "16.2",
      "purl": "pkg:docker/accrue/postgresql@16.2"
    }
  },
  "components": [
    {
      "type": "library",
      "name": "libssl",
      "version": "3.0.13",
      "description": "Secure Sockets Layer toolkit",
      "licenses": [{"license": {"id": "Apache-2.0"}}],
      "hashes": [
        {"alg": "SHA-256", "content": "f1a92e8c2534a781b0a701fae29853401fa92305a2f89c09c901fe2a88301fa3"}
      ]
    },
    {
      "type": "database",
      "name": "postgresql-server",
      "version": "16.2-r1",
      "licenses": [{"license": {"id": "PostgreSQL"}}]
    }
  ]
}
<?xml version="1.0" encoding="UTF-8"?>
<Document xmlns="http://spdx.org/rdf/terms#">
  <spdxVersion>SPDX-2.3</spdxVersion>
  <dataLicense>http://spdx.org/licenses/CC0-1.0</dataLicense>
  <DocumentCreationInfo>
    <created>2026-05-23T12:00:00Z</created>
    <creator>Tool: Accrue SBOM Packager v2.0</creator>
  </DocumentCreationInfo>
  <Package spdx:id="SPDXRef-Package-PostgreSQL">
    <name>postgresql</name>
    <versionInfo>16.2</versionInfo>
    <packageFileName>accrue-postgresql-16.2.tar.gz</packageFileName>
    <checksum>
      <algorithm>SHA256</algorithm>
      <checksumValue>e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855</checksumValue>
    </checksum>
  </Package>
</Document>