You build your images. We keep them secure.
Our 30,000+ secure packages and select base images give your teams everything they need to build exactly what they want, without inheriting the burden of package-level CVE remediation.
The world’s leading companies trust Chainguard
Secure-by-default packages for whatever and however you build
Control image composition
Compose bespoke container images for your specific requirements with tools you already use.
Access a vast portfolio of secure packages
Choose from 30,000+ zero-CVE packages — including every package powering Chainguard Containers — to build a secure foundation for your next project.
Simplify security requirements
Offload vulnerability remediation and package maintenance to Chainguard so your team stays focused on building and deploying.
We handle security. You handle shipping.
Leverage your own private APK repository to build bespoke container images using Chainguard's continuously updated package catalog. Trust Chainguard to handle CVE remediation, vulnerability monitoring, and continuous package updates, so your team never has to slow down.
Build with the same packages powering 2,000+ Chainguard Containers
Our 30,000+ zero-CVE packages are continuously refreshed through nano-updates, the same building blocks behind every container image in the Chainguard Catalog.
No new tooling, no disruption
Whether you're building with Bazel and rules_apko, Melange, Dockerfiles, or any other tool, just swap in secure packages and keep shipping.
FIPS compliance, accelerated
Upgrade to the FIPS variant of the Chainguard OS Packages to access packages built with the latest versions of Chainguard's FIPS-validated cryptographic modules, helping you fulfil compliance requirements faster.
Why Chainguard?
Trusted packages you can’t get elsewhere
Continuous CVE remediation
Stay ahead of vulnerabilities with continuously updated, zero-CVE packages and select base images that are rebuilt daily.
Chainguard OS and Chainguard Factory
Every package is built from source in Chainguard Factory, powered by Chainguard OS, the same secure, minimal foundation behind Chaingaurd Containers.
Full software supply chain visibility
Know exactly what's in every package you pull. Every artifact ships with build-time generated SBOMs, providing full transparency.
Enterprise support included
Dedicated support from Chainguard to keep your packages secure and updated
Related resources
The State of Trusted Open Source: December 2025
Read now
The Hidden Costs of CVEs — And the Value You’re Leaving on the Table
Read now
Why Golden Images still matter and how to secure them with Chainguard
Read now
This Shit is Hard: The life and death of a CVE in the Chainguard Factory
Read now