Images
Contact
CHAINGUARD Images

Who said image size isn’t everything?
(Not us)

Deploy hardened images with 0-known vulnerabilities, a minimal footprint, and SBOMs.
TRUSTED BY
Graphic of Block logo
WHY CHAINGUARD IMAGES

Reach 'inbox zero' for your CVEs

Drastically reduce vulnerabilities and image attack surface.

Silence the scanner noise

Reduce time spent patching or chasing false positives with images that make your scanning tools more accurate and actionable.

Minimal = more secure

Stripped down, smaller images with 0-known vulnerabilities that deliver faster builds and deploys using less resources.

14M+
images pulled to date.
97.6%
reduction in CVEs.
80%
average reduction in image size.
0
known vulnerabilities.
COMPARE

Chainguard versus the world

Chainguard Images only contain what is required to build or run your application, delivering on average, an 80% reduction in size and fewer CVEs.

Rebuilt daily
Ensuring images are up-to-date and include available security patches.
SLAs & custom support
Custom images and packages with SLAs and FIPS / FedRAMP compliance.
Signed by Sigstore
Cryptographically signed for proof of origin and assurances for anti-tampering.
SBOM quality
Out-of-the-box SBOMs at build time attesting the provenance of all artifacts.
INTRODUCING

There’s a new stack in town

The first community Linux (un)distribution built with default security measures for the software supply chain.

CATALOG

Secure container images

Our catalog is complete with images from applications and middleware, development and build tools and language runtimes.

Wolfi Base

Replace alpine image with wolfi-base.

Go

Download our Go build image.

Node

Download our node base image.

Ruby

Download our Ruby base image.

Python

Download our python base image.

Java

Download our java JRE base image or java JDK build images.

View all images
View all scanners

For years, our team struggled with minimizing and triaging CVEs in one of our most critical customer-facing images. By switching to Chainguard Images, we almost immediately achieved zero-known CVEs in our customer image for the first time in two years, which significantly helped free up engineering  and technical success resources to focus on customer innovation and removed the daily headache of vulnerability maintenance associated with that image.”

Diego Comas
Head of Security
Read more

We are excited about the prospect of an actively curated base container image distro that has the potential to allow HPE to to further enhance software supply chain integrity for our customers.”

Tim Pletcher
Research Engineer, Office of Security CTO
Read more

Duis aute irure dolor in reprehenderit in voluptate velit.

Duis aute irure dolor in reprehenderit in voluptate velit.

Duis aute irure dolor in reprehenderit in voluptate velit.

Duis aute irure dolor in reprehenderit in voluptate velit.

Free to start, upgrade anytime

Tiers that scale with your business or project.

Public

full catalog access
Support for latest versions
Community support
No CVE SLAs

Standard

catalog of languages & tools, plus
Major and minor versions
14-day critical CVE remediation
Customer support

Custom

more images, faster SLAs
Major and minor versions
7-day critical CVE remediation
Custom requests