Chainguard Blog
Featured posts
The State of Trusted Open Source: March 2026
AI is accelerating software and CVE growth. Chainguard’s latest report shows rising risk in the long tail and how teams can stay secure at scale.
Ed Sawma, VP of Product Marketing, and Sasha Itkis, Product Analyst
Everything we announced at Chainguard Assemble 2026
Catch up on all the announcements Chainguard made at Assemble 2026, featuring AI agent skills, CI/CD workflows, and more.
Patrick Donahue, SVP, Product
Security insights delivered before they become problems
Latest updates
- open source
Knative is now a CNCF project, and why this matters for software security
Tracy Miranda, Head of Open Source
- news
Why Chainguard joined the Open Source Security Foundation
Roxanne Joncas
- engineering
Introducing apko: bringing distroless nirvana to Alpine Linux
Ariadne Conill, Principal Software Engineer
- security
Goodbye SDLC, Hello SSDF! What is the Secure Software Development Framework?
Tracy Miranda, Head of Open Source
- engineering
Automatic SBOMs with ko
Matt Moore, CTO
- open source
sigstore, the local way
Thomas Strömberg, Director of Security
- engineering
Keyless signing with Tekton on Amazon EKS
Priya Wadhwa, Engineering Manager
- engineering
Keyless signing with Tekton on AKS
Nghia Tran, Engineering Manager
- engineering
How to make package signing useful
John Speed Meyers, Principal Research Scientist
- engineering
How to verify cosigned container images In Amazon ECS
James Strong, Solutions Architect
- open source
How Citi is building the secure software factory with Sigstore and Tekton
Tracy Miranda, Head of Open Source
- open source
Chainguard's Josh Dolitsky elected to OCI's Technical Oversight Board
Tracy Miranda, Head of Open Source