Chainguard Blog
Featured posts
Chainguard Libraries for Python: Now Generally Available with CVE Remediation and Malware Protection
Chainguard Libraries for Python, trusted open source language libraries designed for CVE remediation and malware protection, is now generally available.
Bria Giordano, Director, Product Marketing, and Anushka Iyer, Product Marketing Manager
The State of Trusted Open Source: December 2025
Chainguard’s State of Trusted Open Source for December 2025 dives into usage trends for Chainguard Containers, CVE data, and why remediation speed matters.
Ed Sawma, VP of Product Marketing, and Sasha Itkis, Product Analyst
Security insights delivered before they become problems
Latest updates
- news
Top 5 Takeaways on the NSA / CISA / ODNI Developer Guidelines for Securing the Software Supply Chain
Dan Lorenc, CEO
- security
Don’t overlook the boardroom benefits of a secure software supply chain
Kim Lewandowski, Chief Product Officer
- security
What your scanner doesn't know **Can** hurt you
Dan Lorenc, CEO
- security
A toolbox for a secure supply chain
Marina Moore, Summer Intern
- news
There's no such thing as vulnerability-free software, it simply doesn't exist… yet
Dan Lorenc, CEO
- security
Implementing Secure Software Supply Chain Security Controls: Understanding NIST SSDF & SLSA Frameworks
Jason Lutz, Customer Engineer
- security
Sigstore for CISOs
John Speed Meyers, Principal Research Scientist and John Osborne, Principal Sales Engineer
- engineering
Secure your software factory with melange and apko
Josh Dolitsky, Staff Software Engineer
- news
Let's stop insecure software from eating the world
Dan Lorenc, CEO
- engineering
Minimal container images: Towards a more secure future
Adrian Mouat, Staff OSS Engineer
- research
Do the dependency trees of widely used packages grow?
John Speed Meyers, Zachary Newman, Jacobo McGuire, Marina Moore
- open source
We applaud PyPI steps to make Python more secure
Dan Lorenc, CEO