Chainguard Blog

Latest updates

securityApr 29, 2026
Chainguard artifacts safe from npm supply chain attack targeting SAP developer dependencies with 2.25M+ monthly downloads
Quincy Castro, CISO
securityApr 29, 2026
CMMC Phase 2, explained: Requirements, deadlines, and who’s affected
Philip Brooks, Senior Enterprise Solutions Engineer
securityApr 27, 2026
Mythos pulls zero-days forward. Here's what you need to know now.
Patrick Smyth, Principal Developer Relations Engineer
securityApr 25, 2026
Chainguard customers safe from elementary-data compromise
Quincy Castro, CISO
securityApr 22, 2026
Chainguard customers safe from new npm worm and xinference supply chain attack
Quincy Castro, CISO
securityApr 14, 2026
2026: The year of AI-assisted attacks
Patrick Smyth, Principal Developer Relations Engineer
securityApr 10, 2026
AI is finding vulnerabilities faster than anyone can patch them. Now what?
Ed Sawma, VP of Product Marketing
securityApr 10, 2026
Is Grype a single point of failure for Chainguard’s CVE detection?
Alex Burrage, Director of Product Security
securityApr 7, 2026
Attacks rewritten: Where malware enters the build
Manfred Moser, Sr. Principal Developer Relations Engineer, and Patrick Smyth, Principal Developer Relations Engineer
securityApr 2, 2026
Your riskiest supplier isn't a vendor. It's a registry.
Cameron Martin, Manager, Solutions Engineering - APJ
securityMar 31, 2026
Malicious axios versions published to npm: Chainguard customers protected
Quincy Castro, CISO
securityMar 27, 2026
How to protect your organization from the telnyx PyPI compromise
Ross Gordon, Staff Product Marketing Manager, and Bria Giordano, Director, Product Management

CG System promptExecute command

Chainguard Blog

$ chainguard learn --more