Today we’re excited to share that Bazel is now available as a Chainguard Image. You might be familiar with our earlier work using Bazel to build containers, but now we’re using containers to build Bazel.
Bazel is a popular build tool that’s designed for speed, scalability, security, and performance. Build tools form a critical role in the software supply chain, but they’re often neglected or looked over when thinking about production security. As “Reflections on Trusting Trust” taught us decades ago, securing production infrastructure is impossible without a secure toolchain.
The Chainguard Bazel Image is built with the minimum required package set, keeping it slim for fast CI runs. This also means you have fewer CVEs to triage and remediate.
As always, the binaries in our Images are built from source and come with comprehensive and Software Bills of Material (SBOMs) from the start. These SBOMs contain the package metadata for everything in the Image and can be used for vulnerability scanning or license compliance. You can download the SBOMs for these containers with cosign:
If you want to see upwards of a 27% reduction in your Image sizes (see footnotes) with more security built in by default start using Chainguard’s Bazel Image today at github.com/chainguard-images, or get started with our Bazel Image using documentation in Chainguard Academy. Chainguard Images are currently for Redis, curl, Git, Go, Jenkins, Postgres, Ruby and more. If you’re interested in support contracts, SLAs for vulnerabilities, FIPS-enabled images, or support for custom images or older versions, please reach out.
We are always looking for ways to improve our end user experience. If you have feedback or would like to submit a support issue you can reach out to us directly or file it here.
_______________________________
1. Comparing gcr.io/bazel-public/bazel:latest to cgr.dev/chainguard/bazel:latest:
27% reduction in image size, also note difference in time since rebuild.
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Suspendisse varius enim in eros elementum tristique. Duis cursus, mi quis viverra ornare, eros dolor interdum nulla, ut commodo diam libero vitae erat. Aenean faucibus nibh et justo cursus id rutrum lorem imperdiet. Nunc ut sem vitae risus tristique posuere.