Chainguard Blog
Featured posts
Chainguard Libraries for Java is now GA and includes CVE remediation
Chainguard Libraries for Java is now GA, delivering CVE-remediated dependencies with SBOMs, provenance, and scanner-recognized fixes.
Ross Gordon, Staff Product Marketing Manager
Building a category: Chainguard named a Leader in the inaugural Gartner® Magic Quadrant™ for Software Supply Chain Security
Gartner names Chainguard a Leader in Software Supply Chain Security, highlighting its secure-by-default approach and market vision.
Patrick Donahue, SVP, Product, and Sam Katzen, Director, Product Marketing
Latest updates
- engineering
How to make package signing useful
John Speed Meyers, Principal Research Scientist
- engineering
How to verify cosigned container images In Amazon ECS
James Strong, Solutions Architect
- open source
How Citi is building the secure software factory with Sigstore and Tekton
Tracy Miranda, Head of Open Source
- open source
Chainguard's Josh Dolitsky elected to OCI's Technical Oversight Board
Tracy Miranda, Head of Open Source
- security
What an SBOM can do for you
Adolfo García Veytia, Staff OSS Engineer
- engineering
Cosign image signing In AWS CodePipeline
James Strong, Solutions Architect
- open source
Kubernetes Meets SLSA
Dan Lorenc, CEO
- news
Announcing our Seed Round, and Chainguard Services!
Dan Lorenc, CEO
- engineering
Zero-friction “keyless signing” with Github Actions
Matt Moore, CTO
- open source
Busting 5 Sigstore Myths
Kim Lewandowski, Dan Lorenc
- open source
A deep dive on Sigtore's Fulcio
Dan Lorenc, CEO
- engineering
Zero-friction “keyless signing” with Kubernetes
Matt Moore, CTO