OPEN SOURCE

Securing OSS is not optional

We are a team of founders, maintainers, and contributors to the ecosystem's largest projects.

Sigstore

Sigstore is the new standard for signing, verifying and protecting open source software.

Kubernetes

The most widely used open source system to deploy, scale, and manage containerized applications.

Wolfi

The first community (un)distro built with default security measures for the software supply chain.
14M+

collective years of experience in open source.

100+

projects actively maintained by Chainguardians.

250+

hours a week spent contributing
to OSS.

18

Chainguardians hold leadership positions in OSS.

Community Leadership

We contribute, maintain and help lead some of the most widely relied upon open source software projects.

Kim Lewandowski
Chainguard CPO & Co-founder
Dan Lorenc
Chainguard CEO & Co-founder
Priya Wadhwa
Sigstore Technical Steering Committee
Josh Dolitsky
OCI Technical Oversight Board
Carlos Panato
Kubernetes Steering Committee
OSS PROJECTS

Contribute. Maintain. Secure.

Our roots are in open source.

Kubernetes 
Container orchestration system.
Sigstore
Sign, verify, and protect software.
SLSA
Software supply chain framework.
Wolfi
Community (un)distro for supply chain.
Kubernetes 
Container orchestration system.
Sigstore
Sign, verify, and protect software.
SLSA
Software supply chain framework.
Wolfi
Community (un)distro for supply chain.
Kubernetes 
Container orchestration system.
Sigstore
Sign, verify, and protect software.
SLSA
Software supply chain framework.
Wolfi
Community (un)distro for supply chain.
OCI
Standards for container formats.
OpenVex
Specification and reference toolchain.
Knative
severless containers in Kubernetes.
Tekton
Standardized CI/CD tooling.
OCI
Standards for container formats.
OpenVex
Specification and reference toolchain.
Knative
severless containers in Kubernetes.
Tekton
Standardized CI/CD tooling.
OCI
Standards for container formats.
OpenVex
Specification and reference toolchain.
Knative
severless containers in Kubernetes.
Tekton
Standardized CI/CD tooling.
COMMUNITY

Open source projects using Chainguard Images

Timoni

Timoni is a package manager for Kubernetes, powered by CUE and inspired by Helm. The Timoni project strives to improve the UX of authoring Kubernetes configs. Instead of mingling Go templates with YAML like Helm, or layering YAML on top of each-other like Kustomize, Timoni relies on cuelang's type safety, code generation and data validation features to offer a better experience of creating, packaging and delivering apps to Kubernetes.

Read more

Infracost

Infracost shows cloud cost estimates and FinOps best practices for Terraform. It lets engineers see a cost breakdown and understand costs before making changes, either in the terminal, VS Code or pull requests.

Read more

ko

ko is a simple, fast container image builder for Go applications. It's ideal for use cases where your image contains a single Go application without any/many dependencies on the OS base image (e.g., no cgo, no OS package dependencies).

Read more

Kubepug

Verifies the current Kubernetes cluster or input files checking whether exists objects in this deprecated API Versions, allowing the user to check before migrating.

Read more

Tekton

Tekton is a powerful and flexible open-source framework for creating CI/CD systems, allowing developers to build, test, and deploy across cloud providers and on-premise systems.

Read more

Ockam

Ockam empowers developers to build secure-by-design apps that can trust data-in-motion.

Read more

Follow our OSS community

Github

Follow our work on GitHub and join in on the fun.

Graphic of Wolf icon

Wolfi

Wolfi is a community Linux OS designed for the container and cloud-native era.

Academy

Learn how to make your software supply chain secure by default.