Chainguard is the trusted source for open source. By delivering hardened, secure, and production-ready builds of all the open source software engineers rely on, Chainguard helps organizations build faster, stay compliant, and eliminate risk. Its customers include Fortune 500 enterprises and global industry leaders, including Anduril, Canva, Fortinet, Hewlett Packard Enterprise, Snap Inc., and Snowflake. Chainguard is venture-backed by leading investors, including Amplify, IVP, Kleiner Perkins, Lightspeed Venture Partners, Mantis VC, Redpoint Ventures, Sequoia Capital, and Spark Capital. For more information, visit: https://www.chainguard.dev/
External link for Chainguard
Secure-by-default container images Build software better with minimal, zero-CVE container images guarded under our industry-leading remediation SLA. Secure container images for modern applications *Reduce costly engineering toil Adopt inherently secure software so engineers can spend more time shipping products and less time patching CVEs. 4 hrs/month per developer saved on vulnerability management. *Secure your open source foundation Rely on trusted open source to improve your security posture and reduce the attack surface for bad actors. 97.6% reduction in CVEs compared to OSS equivalents *Simplify continuous compliance Solve critical compliance controls by default to reduce overhead costs and get products to market faster. 400+ FIPS Images with OS-level STIG hardening.
Kirkland, WA 98033, US
Chainguard reposted this
If you are interested in refining your board engagement as a CISO come chat with us this February 4th at the siberX CISO Forum Canada! We'll be talking about how to make the most of your time in front of your board, common mistakes CISOs make, and how to be a credible partner your board members will seek out again and again. I'll probably also be handing out some Chainguard swag too 🐙
Dirac, Inc. trusts Chainguard to make startup speed compatible with security. ⚡ Learn more in our recent case study: https://lnkd.in/dHfUC86g
Chainguard reposted this
Excited to be speaking at @Chainguard #Assemble26 in NYC this March! Looking forward to joining some of my amazing industry peers to talk about securing the software supply chain. Hope to see you there! https://lnkd.in/gvGMrhX8
Chainguard reposted this
A few years ago, secure container images were a niche concern. The space felt like the men’s room at a Taylor Swift concert: empty… aside from one superfan (me). Today, it’s halftime at an NBA Finals game. There’s a line outside the door, every stall is full, and suddenly, a lot of people are claiming they’ve always cared deeply about bathroom hygiene. We’ve been building containers the hard way for four years, and selling them for over two. That was back when this wasn’t a category and “secure-by-default” wasn’t a phrase people put on slides. Now the space is flooded with “zero-CVE” promises and “hardened” solutions. I wrote a blog about why that happened, why talking about “hardened containers” is the wrong conversation, and what actually needs to change if we don’t want to repeat the same mistakes on a much larger scale. The container security problem isn’t about hardening images. It’s about trusting where software comes from. https://lnkd.in/gnVxrrbb
Chainguard reposted this
With the EU Cyber Resilience Act reshaping how digital products are built and secured, the expectations on software teams have never been higher. In our latest blog, we break down what the CRA means in practice and how teams can start building digital products that are secure by design, resilient, and ready for what’s coming next. 📖 Read more: https://lnkd.in/eaMTFvKn If you’re building, shipping, or securing software in the EU (or selling into it), this one’s for you. 🔐🚀 Chainguard
Join Patrick Smyth, Principal DevRel Engineer, to discover how teams ship AI faster with hardened containers and secure libraries. In this session, you'll learn how to: ✨ Train a model and run inference using the PyTorch Chainguard Container ✨ Reduce AI attack surface with hardened, minimal images ✨ Run AI frameworks with 0 CVEs ✨ Secure AI dependencies using Chainguard Libraries for AI applications Register: https://lnkd.in/e7s_Jdyn
Last year reinforced an uncomfortable truth: many of the most damaging security failures came from not prioritizing trusted systems. Build platforms, developer access, and automation now sit directly in the blast radius of modern attacks. As we kick off 2026, there’s a clear opportunity to apply consistent rigor everywhere. Here are a few security “resolutions” from Matt Moore to consider this year👇
Chainguard reposted this
You still have time to register and attend. In about an hour I will talk about proactive open source library management and do a few demos of Chainguard Libraires with uv, pip, yarn, npm, pnpm and even run some scans with grype. Join me live and bring your questions .. I will try to answer all of them.
Chainguard reposted this
First panel of 2026 in the books. Joined Chainguard last week to talk about how we made security a priority at GovSignals – and why it's been huge for our growth. We started GovSignals in 2023 thinking about security from day one. Early on, it was about optionality – we chose easy-to-port, open-source tools that could deploy into highly secure environments (Supabase, Trigger.dev). Then 1.5 years in we had many mid-market and enterprise defense contractors who all said the same thing: CUI data. Some of their team couldn't use our product due to security controls. This changed our founder calculus. Security stopped becoming just risk mitigation and optionality and became a growth investment with clear ROI. We went all-in, and we achieved FedRAMP High by late last year (we're the only AI proposal platform operating at this level). We've since closed deals we never would have won otherwise – including a Fortune 500 defense contractor with +$1B in annual contract awards. Dove deep into how we invested in security in the panel. Will leave the link to it below.