was the year Chainguard was founded
team members working at Chainguard
Series A financing by Sequoia Capital, Amplify Partners, and other leading angels in June 2022
Sigstore was started to improve supply chain technology for anyone using open source projects. It's for open source maintainers, by open source maintainers.
Supply chain Levels for Software Artifacts is a security framework, a check-list of standards and controls to prevent tampering, improve integrity, and secure packages and infrastructure.
Tekton is a powerful and flexible open-source framework for creating CI/CD systems, allowing developers to build, test, and deploy across cloud providers and on-premise systems.
Knative is an Open-Source Enterprise-level solution to build Serverless and Event Driven Applications
The OpenSSF is a cross-industry collaboration that brings together leaders to improve the security of open source software (OSS) by building an expert community, targeted initiatives, and best practices.
Restricting what's in your runtime container to precisely what's necessary for your app is a best practice employed by Google and other tech giants that have used containers in production for many years.
We can perform audits to outline internal and external supply chain risk. We provide detailed reports with suggested remediations, improvements, and next steps.
Build systems, source code repositories, artifact repositories, deployment pipelines, and policy engines are all in scope.We can evaluate SLSA levels and provide guidance on reaching higher levels.
We can perform audits to outline internal and external supply chain risk. We provide detailed reports with suggested remediations, improvements, and next steps.
Build systems, source code repositories, artifact repositories, deployment pipelines, and policy engines are all in scope.We can evaluate SLSA levels and provide guidance on reaching higher levels.
We can perform audits to outline internal and external supply chain risk. We provide detailed reports with suggested remediations, improvements, and next steps.
Build systems, source code repositories, artifact repositories, deployment pipelines, and policy engines are all in scope.We can evaluate SLSA levels and provide guidance on reaching higher levels.
We can perform audits to outline internal and external supply chain risk. We provide detailed reports with suggested remediations, improvements, and next steps.
Build systems, source code repositories, artifact repositories, deployment pipelines, and policy engines are all in scope.We can evaluate SLSA levels and provide guidance on reaching higher levels.
