Chainguard Blog
Featured posts
The State of Trusted Open Source: March 2026
AI is accelerating software and CVE growth. Chainguard’s latest report shows rising risk in the long tail and how teams can stay secure at scale.
Ed Sawma, VP of Product Marketing, and Sasha Itkis, Product Analyst
Everything we announced at Chainguard Assemble 2026
Catch up on all the announcements Chainguard made at Assemble 2026, featuring AI agent skills, CI/CD workflows, and more.
Patrick Donahue, SVP, Product
Latest updates
- research
The zero CVE challenge: Can official Docker Hub images pass the test?
Trevor Dunlap, Research Intern
- open source
Can Protobom end the SBOM format wars?
Adolfo García Veytia, Staff OSS Engineer and John Speed Meyers, Principal Research Scientist
- open source
wolfi-act: Dynamic GitHub Actions from Wolfi packages
Josh Dolistky, Staff Software Engineer
- security
Fuzzy CVEs, tarfiles, and untrusted input
Dan Lorenc, CEO
- news
Elastic partners with Chainguard on Software Supply Chain security and SLSA assessment
Paul McCann, Principal Product Security Engineer at Elastic and Lewis Denham-Parry, Solutions Architect
- engineering
Good MLOps is good ML supply chain security
Zachary Newman, Principal Research Scientist and Savin Goyal, CTO at Outerbounds
- news
Chainguard named to inaugural Redpoint InfraRed 100
Kaylin Trychon, VP of Marketing and Communications
- product
How Chainguard fixes vulnerabilities before they're detected
Jason Hall, Software Engineer
- engineering
OCI announces upcoming changes for registries
Josh Dolitsky, Staff Software Engineer
- news
Advancing the use of memory safe programming languages
Kaylin Trychon, VP of Marking and Communications
- news
Cleared for takeoff: Meeting TSA’s new cybersecurity requirements
Kaylin Trychon, VP of Marketing and Communications
- engineering
So you want to check image signatures in Kubernetes…?
Dan Lorenc, CEO