Sign inContact usTry it out

Chainguard Images

Reduce attack surfaces and minimize dependencies with our suite of distroless images

Build secure by default

Chainguard Images are security-first container base images that are secure by default, signed by Sigstore, and include SBOMs, thanks to Wolfi—our Linux (un)distro built for the software supply chain.

View our images on GitHub

Continuously updated

Out-of-date software is a major factor in security breaches. Our images are continuously updated with new versions and fixes.

Guaranteed SLAs

Our images come with SLAs that guarantee that we will provide patches or mitigations for vulnerabilities within an agreed time frame.

Provenance

All our images are signed and include Software Bills of Material (SBOMs) that are generated at build time.

Chainguard vs. others

Chainguard Images are minimal, comprised of only the things required to build or run your application;
This results in fewer CVEs over time compared to other base images*.

*Compared to opensource dataset

Images for platform teams

Reduce scanner noise

Our images aim for zero-known vulnerabilities. No more spending hours analyzing reports from scanning tools.

Get compliant

Our images are designed to help organizations increase their SLSA assurance level. We also provide FIPS compliant images.

Stop manual patching

We take care of updating our images in response to new versions and security alerts and even provide an SLA.

Frequently asked questions

Which base images are available today?
What happens when there’s a new vulnerability?
Why are there still unpatched vulnerabilities?

Minimize your attack surface with Chainguard Images today.