Build Secure Software With Images That Include Signatures, SLSA Provenance, and SBOMs
Stop supply chain attacks and ensure compliance.
Secure Your Software Supply Chain by Default
Chainguard Images provide the building blocks for a secure software supply chain. Leverage container images that have cryptographic signatures, SBOMs, SLSA provenance, and more to help meet compliance and prevent supply chain attacks.
How Chainguard Images Help
Build secure software from the start.
Signatures by Sigstore
Use the integration of Sigstore to get proof of origin artifacts that save your team time, and ensure compliant, safe adoption of open source software.
Software Bill of Materials
Gain high-quality, out-of-the-box SBOMs for container images so developers don’t have to build them from scratch or navigate difficult instructions and standards.
SLSA Provenance
Harden your software supply chain with container images that meet SLSA level 2 requirements and are verified, signed, and attested with signatures.
Resources
ProductInto the deep: Exploring Chainguard Container Images
Matt Moore, CTO
ResearchAre SBOMs good enough for government work?
John Speed Meyers, Principal Research Scientist
NewsElastic partners with Chainguard on Software Supply Chain security and SLSA assessment
Paul McCann, Principal Product Security Engineer at Elastic and Lewis Denham-Parry, Solutions Architect
Ready to Lock Down Your Supply Chain?
Talk to our customer obsessed, community-driven team.