Chainguard Images
Reduce attack surfaces and minimize dependencies with our suite of distroless images
Reduce attack surfaces and minimize dependencies with our suite of distroless images
Chainguard Images are security-first container base images that are secure by default, signed by Sigstore, and include SBOMs, thanks to Wolfi—our Linux (un)distro built for the software supply chain.
View our images on GitHub
Out-of-date software is a major factor in security breaches. Our images are continuously updated with new versions and fixes.
Our images come with SLAs that guarantee that we will provide patches or mitigations for vulnerabilities within an agreed time frame.
All our images are signed and include Software Bills of Material (SBOMs) that are generated at build time.
Chainguard Images are minimal, comprised of only the things required to build or run your application;
This results in fewer CVEs over time compared to other base images*.
*Compared to opensource dataset
Our images aim for zero-known vulnerabilities. No more spending hours analyzing reports from scanning tools.
Our images are designed to help organizations increase their SLSA assurance level. We also provide FIPS compliant images.
We take care of updating our images in response to new versions and security alerts and even provide an SLA.