Chainguard Blog
Featured posts
The State of Trusted Open Source: March 2026
AI is accelerating software and CVE growth. Chainguard’s latest report shows rising risk in the long tail and how teams can stay secure at scale.
Ed Sawma, VP of Product Marketing, and Sasha Itkis, Product Analyst
Everything we announced at Chainguard Assemble 2026
Catch up on all the announcements Chainguard made at Assemble 2026, featuring AI agent skills, CI/CD workflows, and more.
Patrick Donahue, SVP, Product
Security insights delivered before they become problems
Latest updates
- research
A purl of wisdom on SBOMs and vulnerabilities
John Speed Meyers, Principal Research Scientist
- product
Chainguard Image now available for HAProxy
Adrian Mouat, Staff OSS Engineer
- engineering
Not all that’s signed is secure: Verify the right way with TUF and Sigstore
Zachary Newman, Principal Research Scientist and Marina Moore (NYU)
- product
Chainguard Image now available for Kubectl
Adrian Mouat, Staff OSS Engineer
- news
Chainguard & BoxBoat, an IBM company, announce strategic partnership to tackle software supply chain security
Kaylin Trychon, VP of Marketing and Communications
- open source
Chainguard to accelerate VEX adoption through OpenVEX specification
Dan Lorenc, CEO
- news
Come see us at CloudNativeSecurityCon in Seattle Feb 1-2!
Sarah O'Rourke, Communications Director
- research
Make SBOMs, not GuessBOMs: Why we need to shift left on SBOM generation
Tracy Miranda, Head of Open Source
- news
Building the first memory safe distro
Dan Lorenc, CEO and Ariadne Conill, Principal Software Engineer
- product
Go 1.20 is coming, and it brings even more security by default
Adrian Mouat, Staff OSS Engineer
- engineering
GitHub Container Registry private repos sometimes… weren’t
Jason Hall, Principal Software Engineer
- open source
Understanding the relationship between FOSS and the “software supply chain”
Ariadne Conill, Principal Software Engineer