WTF is Chainguard ?

WTF is Chainguard?Chainguard is a 3-month start up in the software supply chain security industry. The mission of Chainguard is to make the software lifecycle secure by default. Sounds kinda vague. Do you have a product?No. Not yet. We have some exciting ideas though, and are working on…

What an SBOM Can Do for You

By now, it is common knowledge that a Software Bill of Materials is becoming an increasingly expected requirement from software releases, yet here still seems that some confusion persists about what an SBOM can/could do for your project.…

Kubernetes Meets SLSA

Kubernetes 1.23 was just released and is full of security improvements. The most exciting improvement to us is the release engineering work to bring the Kubernetes build process up to SLSA1 for hardened supply chain integrity!…

Announcing our Seed Round, and Chainguard Services!

Today, I'm excited to announce our funding round led by Amplify Partners and the start of Chainguard Services, the pilot of our program to work closely with organizations to address software supply chain attacks and insider risks.…

A Fulcio Deep Dive

In this post, you will learn about the Fulcio certificate authority of Project Sigstore, in depth!…