Get enterprise-grade Bitnami packages using VMware Tanzu Application Catalog
Tanzu Application Catalog provides enterprise version of Bitnami packages that provides developers with Open Source components that are continuously maintained and verifiably tested for use in production environments. These enterprise packages can be customized to meet organization's internal policies and come with extensive security metadata and advisories for risk assessment.
Why should you switch from Bitnami community to enterprise packages?
Enterprise-grade security
Ensure that you get the latest versions of open source components - pre-packaged and ready to use - as soon as they are available upstream, with our continuously refreshed catalog and associated security metadata
Tested for production usage
Reduce the risk of failure at deployment time by using our enterprise packages, which are made production-ready through security scans, functional tests, and verifications across various combinations of Kubernetes versions, cloud platforms, and base OS distribution versions
Comprehensive SBoM, CVE scan results, and VEX documents
Gain visibility into code provenance, dependencies, OSS licenses, vulnerabilities and the corresponding risks to better control the complexities of your ever-growing open source software supply chain
Base OS Customization
Enjoy the flexibility to choose any base OS as per your enterprise standards and policies including VMware's Photon OS, known for its minimal CVEs
Comparison: Bitnami Application Catalog vs Tanzu Application Catalog
| Features | Bitnami Application Catalog | Tanzu Application Catalog |
|---|---|---|
| Update cadence | Best effort | Refresh of catalog triggered by component updates and critical CVE fixes |
| Support | Community | VMware support |
| Base operating system | Debian | Customer choice |
| Architecture | AMD64, ARM64 | AMD64, ARM64 |
| Governance and security advisories | Basic information on components and licenses within the images | Enhanced Software Bill of Materials (SBOM) with detailed metadata for all form factors and CVE scan result reports and VEX documents for container images |
| Validation reports | Not available | Downloadable application security performance and functional tests results as well as verifications to run air-gap, non-root, and with FIPS |
| Feature requests | Community | Priority |
| Kubeapps support | Community | VMware support |
| Sealed Secrets support | Community | VMware support |
| Content Storage | Public | Private (Customer provided or VMware hosted registry) |
| Recommended use | Development | Production |