Chainguard

Our SVP of Product, Patrick Donahue, shares why he's genuinely excited to join Chainguard during this pivotal stage of growth: "We’re eliminating engineering toil to provide a trusted foundation—free of malware and known vulnerabilities—so developers can focus on what they do best: building and solving problems for their customers. At a fast-growing company, you need to feel deeply connected to the mission." 💜 Read more on the blog & reach out if you're interested in building the future of secure software with us! 🤝 https://lnkd.in/eudiCEeX

Probably not the best way to threat model your enterprise use of open source software ... curious how to threat model what you're building from? Check out my latest post in Chainguard's blog "This Shit is Hard: Applying Zero Trust to Open Source Software". Link in comments to appease the ~~robot overlords~~ mysterious algorithm.

You don't have to choose between secure-by-default and joyful-to-use technology: our in-house container genius Adrian Mouat will walk you through Chainguard container images with a hands-on demo in tomorrow's Learning Labs (9/30)! Sign up in comments

⚡ FedRAMP High and DoD IL5 in record time? 🦸♂️ No cape required. Just Chainguard’s FIPS-validated, STIG-compliant containers swooping in with zero CVEs—because patching vulnerabilities before your coffee even cools is our kind of superpower. See what Snowflake, Ask Sage, Inc., and Appian had to say about Chainguard as their compliance sidekick! 👇 https://lnkd.in/e4aV8SCf 

Compliance didn’t create hardened images—better scanners did. If you're operating in a regulated space (or will be soon, thanks to the CRA), you know the pain: you have to justify every vulnerability. That includes the thousands of "negligible" CVEs sitting in bloated base images. The container base image math is simple: Alpine: 16 packages, 6 vulnerabilities Debian: 78 packages, 46 vulnerabilities The influx of new hardened image vendors isn't a mandate, it's a necessity. Minimal bases cut the noise, slash compliance overhead, and allow your security team to focus on the vulnerabilities that actually matter. After Anchore partnership announcement with Chainguard this week, I wrote up why hardened images are now the default starting line for continuous compliance (link in the first comment)

Tune in as Dan Lorenc is joined by Sumit Bindal, Principal Member Of Technical Staff at Oracle. 💪 In this session they will cover: - how to approach authn/authz with MCPs - how to guide AI towards an approach while vibe coding - how to bookmark in a given context and utilize the context window properly Mark your calendars: Friday, 9/26 at 3:30pm ET!

If you use Helm charts (maybe from a provider who recently changed their terms...) you might want to checkout Chainguard's iamguarded Charts. I did a video a little while back on getting started with the postgres chart

We’re excited to introduce Unchained, your monthly dose of hot takes and practical advice from – and for – engineering and security leaders. Subscribe and don’t miss our first edition from Chainguard CISO, Quincy Castro! 💜