--- title: Chainguard Reviews meta_title: 'Chainguard Reviews 2026: Details, Pricing, & Features | G2' meta_description: Filter 64 reviews by the users' company size, role or industry to find out how Chainguard works for a business like yours. aggregate_rating: rating_value: 4.7 review_count: 64 scale: '5' date_modified: '2026-06-27' parent_category: name: "DevSecOps\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t" url: https://www.g2.com/categories/devsecops --- # Chainguard Reviews **Vendor:** Chainguard **Category:** [Container Security Tools](https://www.g2.com/categories/container-security-tools) **Average Rating:** 4.7/5.0 **Total Reviews:** 64 ## About Chainguard Today, open source software makes up over 90% of the code organizations use. AI is rapidly accelerating how fast that code is written and assembled. As engineers, AI agents, and bad actors all have access to the same powerful models, there’s a critical need to proactively secure the open source artifacts your AI software supply chain depends on. Chainguard delivers hardened, trusted, and production-ready open source artifacts engineers and AI agents rely on — so organizations can build faster while staying compliant and eliminating risk. No other company secures more of the software supply chain by delivering a threat-resistant open source artifacts with verifiable integrity. Value Drivers • Revenue and Innovation → Enable teams to ship faster with AI and enter regulated markets with confidence by removing security friction from the path to revenue and making trust a competitive advantage. • Operational Efficiency → Scale software delivery by reducing security-driven toil and standardizing secure-by-default foundations that allow teams to focus on building, not fixing. • Risk Reduction & Compliance → Proactively reduce software supply-chain risk from AI and sustain continuous compliance to protect revenue, brand trust, and business continuity. ## Chainguard Pros & Cons **What users like:** - Users appreciate the **ease of use** of Chainguard, allowing quick and simple deployment of secure images. (9 reviews) - Users praise the **exceptional customer support** of Chainguard, which is proactive, responsive, and genuinely invested in their success. (8 reviews) - Users value Chainguard's **robust security measures** , ensuring flexible access to vulnerability-free images for a safer experience. (5 reviews) - Users appreciate the **comprehensive security** provided by Chainguard, ensuring minimal-vulnerability containers for safer product delivery. (4 reviews) - Users praise Chainguard for its **strong security approach** and minimal, well-maintained container images, enhancing supply chain hygiene. (4 reviews) - Users value the **easy integrations** of Chainguard, enhancing workflows and simplifying the software supply chain security process. (4 reviews) - Users find the **onboarding process seamless** , allowing for quick integration of Chainguard's secure images in development. (4 reviews) - Threat Detection (4 reviews) - Features (3 reviews) - Scanning Technology (3 reviews) **What users dislike:** - Users experience **missing features** like absent images and unstable versions, complicating service migration and usage. (3 reviews) - Users find the **complex setup** of Chainguard time-consuming, especially when managing multiple environments and integrations. (2 reviews) - Users experience a **difficult learning curve** when adapting to Chainguard's unique configurations and package management. (2 reviews) - Users find Chainguard **expensive** , noting high costs for integration and maintenance, impacting individual user affordability. (2 reviews) - Users face **integration issues** with Chainguard, citing complexity and high costs for individual implementations. (2 reviews) - Users find Chainguard's **pricing issues** challenging, especially for smaller teams needing tailored solutions. (2 reviews) - Insufficient Information (1 reviews) - Learning Curve (1 reviews) - Navigation Difficulty (1 reviews) - Search Difficulty (1 reviews) ## Chainguard Reviews ### 1. Chainguard: Secure, Minimal Images with World-Class Support **Rating:** 5.0/5.0 stars **Reviewed by:** Keith B. | Senior Site Reliability Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** June 12, 2026 **What do you like best about Chainguard?** What stands out most about Chainguard is the combination of technical excellence, operational maturity, and customer obsession that is rarely found in a single platform. First and foremost, the breadth and depth of their image catalog is exceptional. Chainguard provides one of the most comprehensive collections of secure, minimal, and production-ready container images available today. The catalog covers a wide range of modern workloads and significantly reduces the operational burden of building, maintaining, and securing custom base images internally. Equally impressive is their flexibility. When an image is not already available in the catalog, the Chainguard team demonstrates a willingness to engage directly with customers and evaluate adding new images based on real-world requirements. This level of responsiveness transforms the relationship from that of a traditional vendor into a true engineering partnership. From a security and reliability perspective, the quality of the images themselves is outstanding. The images are thoughtfully curated, continuously maintained, and designed with a strong security-first philosophy. They provide a substantial reduction in vulnerability exposure while preserving compatibility and operational simplicity. For organizations focused on supply chain security, compliance, and reducing risk, Chainguard represents a significant advancement over traditional container image strategies. The API they offer is also robust and very polished with a ton of features that are much needed from an operational standpoint that are often not present with other vendors. Chainguard has also curated many helpful tools to help with the process as well. The customer experience is equally noteworthy. Their onboarding process is among the best I have encountered. The team is highly knowledgeable, responsive, and capable of engaging at both strategic and deeply technical levels. Whether discussing platform architecture, implementation details, or organizational adoption, they consistently demonstrate expertise and a genuine commitment to customer success. The user experience deserves special recognition as well. The platform's UI and UX are exceptionally well designed—clean, intuitive, and efficient. Complex security and image management workflows are presented in a way that is approachable without sacrificing depth or functionality. It is clear that significant attention has been invested in making the platform easy to navigate and operationalize at scale. Overall, Chainguard has built a platform that excels across the dimensions that matter most to modern platform engineering and SRE organizations: security, reliability, usability, scalability, and customer partnership. Their extensive image ecosystem, willingness to adapt to customer needs, world-class support organization, and polished user experience make them one of the strongest solutions available for securing and managing containerized workloads. **What do you dislike about Chainguard?** There are no real downsides to using chainguard that I've experienced. **What problems is Chainguard solving and how is that benefiting you?** One of the biggest challenges Chainguard helps us solve is reducing the operational overhead associated with container image security and vulnerability management. Prior to adopting Chainguard, a significant amount of engineering effort was spent tracking, remediating, rebuilding, and validating container images in response to newly disclosed CVEs. While that work is necessary, it is rarely a differentiating activity for an engineering organization and can quickly consume valuable platform engineering resources. Chainguard dramatically shortens the time between vulnerability disclosure and remediation. Their ability to rapidly rebuild and publish updated images allows us to address security findings much faster than we could through internal processes alone. As a result, we are able to maintain a significantly lower vulnerability footprint across our containerized workloads while reducing the operational burden on our teams. This has been particularly valuable from a compliance and regulatory perspective. As an organization pursuing and maintaining FedRAMP compliance, minimizing CVE counts and demonstrating strong vulnerability management practices is critical. Chainguard has helped us consistently reduce the number of vulnerabilities identified in our environments, making audits, security reviews, and continuous compliance efforts substantially easier to manage. Beyond the direct security benefits, Chainguard allows our engineers to focus on higher-value initiatives rather than spending cycles maintaining base images and chasing vulnerability remediation work. The platform effectively shifts a large portion of the container security lifecycle to a team whose core competency is maintaining secure software supply chains, which improves both our security posture and operational efficiency. Ultimately, Chainguard is not just helping us reduce CVEs—it is helping us build a more scalable, secure, and sustainable approach to software supply chain security while freeing engineering resources to focus on delivering business value. ### 2. Trusted Partner for Secure Container Infrastructure **Rating:** 5.0/5.0 stars **Reviewed by:** Stacey Z. | GRC Lead, Mid-Market (51-1000 emp.) **Reviewed Date:** June 26, 2026 **What do you like best about Chainguard?** Chainguard's security-first approach, combined with the expertise of their engineering team, has been the most valuable aspect of our partnership. Their minimal, hardened container images and FIPS-compliant libraries have helped simplify our FedRAMP readiness efforts while reducing software supply chain risk. We also appreciate their responsiveness, technical knowledge, and willingness to work collaboratively to resolve implementation challenges and support our engineering teams. **What do you dislike about Chainguard?** We have no significant concerns at this time and have been pleased with our overall experience working with Chainguard. **What problems is Chainguard solving and how is that benefiting you?** Chainguard is helping us strengthen our software supply chain security while accelerating our FedRAMP readiness. Their hardened container images and FIPS-compliant cryptographic libraries reduce the effort required to build and maintain secure container images, simplify compliance with federal security requirements, and help minimize vulnerabilities in our software stack. This allows our engineering teams to focus on delivering product capabilities while improving the security and integrity of our containerized workloads. ### 3. Secure, Hardened Chainguard Images That Save DevSecOps Time **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Aviation & Aerospace | Mid-Market (51-1000 emp.) **Reviewed Date:** June 25, 2026 **What do you like best about Chainguard?** As a DevSecOps engineer, the best part of Chainguard is being able to get secure, hardened container images off the shelf. Before Chainguard, I had to maintain my own images and write custom scripts to remove certain binaries, or build my own images from scratch to reduce vulnerabilities. That created a lot of toil, especially when it came to keeping everything up to date. Now I can start from images that are already designed with security in mind, which cuts down on vulnerability noise and saves me time. I don’t use the UI much, so for me the main value is the core functionality: reliable, low-vulnerability images that make secure container workflows much easier to maintain. **What do you dislike about Chainguard?** Some images that are directly derived from other sources, like Bitnami, end up with entrypoints that differ from the originals. On top of that, some Helm charts don’t provide a way to customize the container’s ENTRYPOINT or CMD. In certain cases, this leaves me having to maintain my own image (using Chainguard’s image as a base) solely to adjust the ENTRYPOINT. **What problems is Chainguard solving and how is that benefiting you?** This is kind of obvious question - it helps me maintain secure environment. It is also extremely helpful in case of certifications like SOC2 or deployments to restricted environments. ### 4. Well-Engineered, Fast-Updated Secure Container Images with Outstanding Support **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Hospital & Health Care | Enterprise (> 1000 emp.) **Reviewed Date:** June 15, 2026 **What do you like best about Chainguard?** Chainguard container images are very well engineered, well managed, and well supported. The company stays focused on providing meaningful, effective security, and that focus shows in the overall experience. The images are updated promptly as vulnerabilities are resolved by product owners and communities. For example, I was tracking a particularly high-impact npm vulnerability, and our node/npm images were updated within four hours of the release of the new (remediated) npm version. Wolfi, as a container-focused Linux distribution, is well planned and well implemented. I especially appreciate the glibc compatibility (in contrast to Alpine). Chainguard has also done a great job developing tools and information that can be used in automated processes, rather than only being available via a web page. Overall, I’ve appreciated the depth of knowledge on the technical team. I’ve learned a huge amount and added a significant number of security tools based on my conversations with our technical support team. The product support lead for our company has done an amazing job providing everything possible for us to be successful. **What do you dislike about Chainguard?** The most difficult issue I’ve encountered when using the Chainguard container images is the complexity of the web pages for the container products. My company has a specific need to use only the latest updated version within each supported product major version. Because of that, it was hard to explain to other users which label they should use. For example, I need teams to refer to images by product and major version, e.g., node:24-latest. However, the same image might also be referenced as “node:latest” or “node:24.9,” which created confusion. I ended up developing an internal dashboard to make it clearer which images to use to meet our compliance requirements. Note: I understand that many other companies might prefer node:latest or a pinned version, so Chainguard needs to provide all the labels to give customers flexibility and choice. In our case, though, that flexibility made it harder for some of our teams to consistently select the correct option for our needs. **What problems is Chainguard solving and how is that benefiting you?** Chainguard provided us with a solution for building containers configured to minimize the attack surface and kept up to date as security patches are released. Across our teams, we’ve used images based on a range of distributions, including Ubuntu, Debian, Alpine, and others. Chainguard’s Wolfi OS has been more compatible with glibc-based components, and it’s updated much more frequently than the other container options we’ve used. Chainguard’s container images are the gold standard for deploying and maintaining security-focused containers. ### 5. Comprehensive Software Supply-Chain Security That Covers Most of Our Needs **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Manufacturing | Enterprise (> 1000 emp.) **Reviewed Date:** June 09, 2026 **What do you like best about Chainguard?** They have the ability to execute on their mission to secure the entirety of the software supply-chain. I appreciate that they have products that cover most of our needs and are working on more to fill the gaps. **What do you dislike about Chainguard?** Attacks on the supply-chain are such a growing problem that it’s not possible for them to move fast enough **What problems is Chainguard solving and how is that benefiting you?** Having a trusted source for our open-source allows us to continue to move as fast as the business wants to, not injecting friction into our processes unnecessarily all in the name of "security". The threats that we face from supply-chain compromise seemingly grow into new domains and scope every day with impact that we can't keep up with. Now that Chainguard can help us with libraries, container images, actions, skills and more, we know that we can meet the challenge that we face in securing our supply-chain, reducing churn on security engineers and keeping the business happy. ### 6. Exceptional product, team that genuinely partners with you **Rating:** 5.0/5.0 stars **Reviewed by:** Adil C. | Software Engineering Manager, Information Technology and Services, Mid-Market (51-1000 emp.) **Reviewed Date:** June 17, 2026 **What do you like best about Chainguard?** Reducing CVEs is obviously important, but even more so are the people who work there and the support they provide. They genuinely care about helping their clients get the most out of their products and services. **What do you dislike about Chainguard?** Honestly, I cant think of anything that I dislike about them. **What problems is Chainguard solving and how is that benefiting you?** Chainguard provides hardened container images that dramatically reduce our CVE exposure. It cuts down the vulnerability noise our team has to triage, letting us focus on shipping product instead of chasing base image issues. ### 7. Fast CVE Remediation and a Clean CLI—Occasional Auth0 Login Hiccups **Rating:** 3.5/5.0 stars **Reviewed by:** Verified User in Airlines/Aviation | Mid-Market (51-1000 emp.) **Reviewed Date:** June 18, 2026 **What do you like best about Chainguard?** The fast CVE remediation requires a minimal images. The well-thought-out authentication flow for CLI and a simple, but complete interface. **What do you dislike about Chainguard?** The login flow is generally fine, but from time to time I get a “something went wrong” message on the Auth0 page. It doesn’t happen often, and it’s not a big deal. **What problems is Chainguard solving and how is that benefiting you?** They allow us to lower our CVE count, which is the main advantage of using Chainguard images. Before, while using public Docker images, we couldn't hit 0 CVE; it was impossible. Chainguard made it possible ### 8. Secure and Seamless Software Delivery **Rating:** 5.0/5.0 stars **Reviewed by:** Aaron S. | Enterprise (> 1000 emp.) **Reviewed Date:** March 17, 2026 **What do you like best about Chainguard?** I appreciate how Chainguard reduces CVEs through its secure-by-default model and fast remediation time. I'm impressed by Chainguard's dedication to secure software delivery and its continuous expansion of complementary products. The company exhibits the passion of a startup combined with the dedication of a well-developed organization. I also find it extremely easy to add the nightly downloads to Artifactory and integrate them into GitLab pipelines. Additionally, I use complementary products like libraries, advisories, and soon-to-come agent skills, which are quite beneficial. **What do you dislike about Chainguard?** I don't like compensating for bad vendor practices like vulnerable code being in library and mod files. While not executable, this causes administrative headaches. **What problems is Chainguard solving and how is that benefiting you?** I use Chainguard to secure containers and libraries. It reduces CVEs with a secure by default model and offers fast remediation. ### 9. Effortless Vulnerability Reduction with Chainguard **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User | Mid-Market (51-1000 emp.) **Reviewed Date:** June 11, 2026 **What do you like best about Chainguard?** Chainguard reduces the total number of vulnerabilities that our team has to spend time patching, both in container images and from open-source libraries. The features that ensure the image dependencies are minimalized and hardened to FIPS and FedRAMP standards are very valuable for us. The initial setup was very easy, allowing us to switch over 50 containers to Chainguard within less than a month. **What do you dislike about Chainguard?** It takes the team a while to create a new image for a 3rd party tool, if they do at all. **What problems is Chainguard solving and how is that benefiting you?** I use Chainguard to reduce the total number of vulnerabilities in our images and cut down the time my team spends patching vulnerabilities, as well as to meet FedRAMP and FIPS requirements. ### 10. Secure, Low-Vulnerability Containers That Integrate Seamlessly into Our Pipelines **Rating:** 4.5/5.0 stars **Reviewed by:** Daniel R. | Managing Director, Small-Business (50 or fewer emp.) **Reviewed Date:** January 19, 2026 **What do you like best about Chainguard?** Chainguard zero- and minimum-vulnerability containers help us deliver secure services and products to our customers with less effort and reduced cybersecurity risk. These containers are a 1-to-1 replacement for existing publicly available containers, and they integrate easily into our development pipelines with no additional effort. **What do you dislike about Chainguard?** Chainguard containers are expensive. However, when I consider how many staff hours go into building and maintaining hardened, low-vulnerability containers for applications, the cost does pay off. **What problems is Chainguard solving and how is that benefiting you?** Chainguard helps reduce cybersecurity risks and the effort associated with our applications by providing secure open-source containers. This, in turn, lowers our need to build and maintain low-vulnerability forks of open-source packages. ### 11. Resolving CVEs in Minutes with a Vast Catalog of Certified Package Checks **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Small-Business (50 or fewer emp.) **Reviewed Date:** June 08, 2026 **What do you like best about Chainguard?** Since we work with a lot of classified data, being able to resolve CVEs in minutes through your vast catalog of certified package version checks has saved our developers time. It lets us focus on what really matters: the end product, rather than compliance. **What do you dislike about Chainguard?** I’m working on onboarding all of our packages to use Chainguard services, and I’m realizing that there are some packages you don’t currently provide. Because of that, finding a workaround is taking some time. **What problems is Chainguard solving and how is that benefiting you?** Cve remediations, it allows me to spend less time struggling with finding solutions and more time reaching out to customers and resolving their feedback ### 12. Valuable Security Patch Management for a Small Team **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Mid-Market (51-1000 emp.) **Reviewed Date:** June 23, 2026 **What do you like best about Chainguard?** Having someone else manage security patches is quite valuable to my small team. **What do you dislike about Chainguard?** Sometimes unclear how vulnerabilities are triaged or resolved in a timely fashion. Some of the underlying compatibility shims play havok with our security scanners. **What problems is Chainguard solving and how is that benefiting you?** Keeping our containers free from vulnerabilities lets us present a strong security posture to auditors and customers. ### 13. Secured Workloads with Excellent Support **Rating:** 4.0/5.0 stars **Reviewed by:** Taruj G. **Reviewed Date:** January 13, 2026 **What do you like best about Chainguard?** I like the hardened images and their support for debugging and other channels. I appreciate the vLLM and OSS support along with the images that we need major upgrades for. I also like their release cadence and find their customer support to be good. I value the minimal, hardened, continuously patched base images that work with vLLM, which has a fast release cadence and evolving dependencies. I also like the immutable image tags, SBOM, and continuous rebuild features. **What do you dislike about Chainguard?** I find the lack of easy migration guides and more FDE support frustrating. Also, the initial setup was problematic for GPU services as core NVIDIA images are not supported. **What problems is Chainguard solving and how is that benefiting you?** I use Chainguard for hardened images, better CVE metrics, securing workloads without root access, and aligning with compliance requirements. ### 14. Essential for CVE-Free Container Management **Rating:** 5.0/5.0 stars **Reviewed by:** Mathieu L. | Head Of Cloud Infrastructure, Mid-Market (51-1000 emp.) **Reviewed Date:** November 20, 2025 **What do you like best about Chainguard?** I appreciate Chainguard's extensive range of catalog with more than 500 public images to choose from, which significantly enhances my experience by ensuring that an image such as Linkerd is available and likely vulnerability-free compared to other sources like DockerHub. The availability of such a vast selection of images provides us with assurance and flexibility, making it easier to maintain security standards. I value the proactive approach of Chainguard in addressing CVEs by ensuring the images are rebuilt daily, which gives me confidence in their security posture. Additionally, I find the initial setup process to be very easy, and I enjoy the self-management feature allowing me to choose the right images from the catalog effortlessly. **What do you dislike about Chainguard?** It would be great if Chainguard's container registry could sync with AWS ECR so I could use my own private registry instead. I believe it's being worked on though. **What problems is Chainguard solving and how is that benefiting you?** I use Chainguard for vulnerability-free container images, addressing CVE vulnerabilities and rebuilding daily. It offers over 500 compatible public images, enhancing security by avoiding CVE-prone DockerHub alternatives. ### 15. Effortless Supply Chain Security with Seamless Integration **Rating:** 5.0/5.0 stars **Reviewed by:** Gopalji S. | Technology Consultant, Enterprise (> 1000 emp.) **Reviewed Date:** November 19, 2025 **What do you like best about Chainguard?** What I appreciate most about Chainguard is how it simplifies and strengthens software supply chain security. The platform offers transparent visibility into dependencies, vulnerabilities, and build pipelines, all without introducing unnecessary complexity. I also value its seamless integration with our existing workflows, which enables our team to identify potential issues early and maintain confidence in our software releases. The combination of automation and practical insights truly sets it apart. **What do you dislike about Chainguard?** The main challenge I’ve encountered with Chainguard is that the initial setup and configuration process can be somewhat time-consuming, particularly if you’re dealing with complex pipelines or managing several environments. After the setup is complete, everything operates smoothly, but getting all the integrations in place and fine-tuning the system at the start does demand some effort. **What problems is Chainguard solving and how is that benefiting you?** Chainguard addresses the challenges of software supply chain security and dependency management. It enables us to spot vulnerabilities, apply necessary policies, and guarantee that only trusted components are included in our builds. As a result, we experience fewer security risks, quicker identification of potential problems, and greater assurance in the reliability of our software releases. The tool streamlines our workflow by saving time, minimizing manual checks, and providing our team with peace of mind that our pipelines remain secure. ### 16. Faster way to lower the CVE count with some caveats **Rating:** 3.5/5.0 stars **Reviewed by:** Verified User in Computer Software | Mid-Market (51-1000 emp.) **Reviewed Date:** June 15, 2026 **What do you like best about Chainguard?** the idea of not having to think about vulnerabilities and their team support **What do you dislike about Chainguard?** UI is slighly clunky, the CLI could be improved **What problems is Chainguard solving and how is that benefiting you?** Keeping the CVE count low really helps us, because it lets us move faster and avoid having to maintain the base images ourselves. ### 17. Simplifies Container Image Vulnerability Management **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** June 12, 2026 **What do you like best about Chainguard?** The product meets expectations and easily removes the headache of vulnerabilities in container images with simply migration and product adoption. **What do you dislike about Chainguard?** There is a learning curve for developers to understand how to transform their current image but once they understand what is required, it is relatively simple process. **What problems is Chainguard solving and how is that benefiting you?** For my current company, container image vulnerabilities but it's having high trust in their build processes and SLAs which enable true speed of remediation. ### 18. Huge CVE Reduction with Chainguard Images, Plus Excellent UI and Documentation **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Enterprise (> 1000 emp.) **Reviewed Date:** June 15, 2026 **What do you like best about Chainguard?** The CVE reduction we’ve seen with Chainguard images has been a huge lift for us. The UI offers robust functionality, and it’s well supported by Chainguard’s tooling and integration points. The documentation is excellent, and the team has been amazing—especially Eric and Gem. **What do you dislike about Chainguard?** Generally don't have anything to share around dislikes. **What problems is Chainguard solving and how is that benefiting you?** Improved supply chain security posture, minimized images, etc. ### 19. Effortless Security and Zero CVEs for Container Images **Rating:** 5.0/5.0 stars **Reviewed by:** anan H. | Senior DevOps, Computer Software, Mid-Market (51-1000 emp.) **Reviewed Date:** November 18, 2025 **What do you like best about Chainguard?** Chainguard provides a strong security approach for container images and supply chain hygiene the images are minimal and well maintained by them and fully SBOM verified with consistently updated which reduces operational risk the platform makes it easy to adopt secure by default practices without adding overhead to CI/CD pipelines and it helps a security companies to have images with zero CVEs **What do you dislike about Chainguard?** I think the only concern is the pricing that can be a bit high for smaller teams **What problems is Chainguard solving and how is that benefiting you?** Chainguard solves the ongoing challenge of keeping container images secure with zero CVEs instead of start patching these images from week to week ### 20. Why we chose Chainguard for securing container images **Rating:** 5.0/5.0 stars **Reviewed by:** Naweed J. | Lead Engineer - Platform, Enterprise (> 1000 emp.) **Reviewed Date:** May 27, 2025 **What do you like best about Chainguard?** Chainguard’s minimalist, hardened container images with zero known CVEs, is going to significantly reduce our vulnerability management overhead. Not having to constantly chase patch cycles will save our teams countless hours. The images are not just secure by default but gives us the confidence in both their integrity and provenance. We are currently looking at wider adoption across our teams and the society. What sets Chainguard apart is their commitment to transparency and compliance, making them a top choice for organisations with high security and regulatory requirements. If you are looking to build a secure, resilient container strategy, Changuard is worth serious consideration. **What do you dislike about Chainguard?** This is very stage at the moment, but we look forward to working closely with Chainguard for feedbacks we get from our team as we start our wider rollout. **What problems is Chainguard solving and how is that benefiting you?** We spend countless hours triaging CVEs, chasing patches and validating fixes - only to repeat the process when another image or dependency gets flagged. This endless cycle drains time, and slows down releases, Chainguard addresses this by eliminating the problem at the source with their secure, minimal images. Shift left has become a must in modern DevSecOps, pushing security earlier into the development cycle to catch vulnerabilities before they reach production. By embedding security early in our CICD pipelines, Chainguard will allow the team to focus on building features and not fixing vulnerabilities, it's about making left lighter. **Official Response from Sarah Haberman:** > Hi Naweed - Thanks for sharing your experience! It's great to hear that our approach is giving your teams more time to focus on building. ### 21. Great Product Innovation Backed by Outstanding Customer Service **Rating:** 5.0/5.0 stars **Reviewed by:** Moshika S. | Enterprise (> 1000 emp.) **Reviewed Date:** March 17, 2026 **What do you like best about Chainguard?** Great Customer service, our account manager is so on top of things! Great product and continued innovation **What do you dislike about Chainguard?** .Net availability for Chainguard libraries isn’t available yet and not sure if it’s on the roadmap. **What problems is Chainguard solving and how is that benefiting you?** Low resource needs for CVE resolution ### 22. Many fewer CVE tickets let me focus on real work **Rating:** 5.0/5.0 stars **Reviewed by:** Ben C. | Senior Software Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** May 16, 2025 **What do you like best about Chainguard?** My team had a huge backlog in JIRA of CVEs we had to remediate. Resolving a CVE takes time away from actual work, as we had to wait for the CVE to be resolved, push the fixes, verify the fixes were passing security scans, then finally backport fixes to old releases we maintained. It all took a long time, was a major effort, and didn't scale well as we had more CVEs than I want to admit :D. Migrating from our team's existing images to chainguard only took about a day, and now using chainguard images totally saves us from having to deal with these CVEs, and lets us work on actual business problems, and not have to try to figure out how to patch some obscure lib install. **What do you dislike about Chainguard?** Sometimes, it's tough to troubleshoot live issues where you need to do kubectl exec into a pod. This is a somewhat rare edge case, but it's something we've run into. It's also sometimes hard to get certain packages fully working (eg a python pandas packages needs a driver which may not be present in the base image). **What problems is Chainguard solving and how is that benefiting you?** Resolving CVEs and keeping images secure so that I don't have to. **Official Response from Sarah Haberman:** > Hey Ben 👋 Thanks for the great review! Glad to hear you're having a great experience with Chainguard! ### 23. Strong Security and a Great Experience So Far **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Accounting | Small-Business (50 or fewer emp.) **Reviewed Date:** March 17, 2026 **What do you like best about Chainguard?** Chainguard is getting a lot of attention because it solves a very real (and growing) problem: software supply chain security—basically making sure the code and containers you run aren’t quietly compromised. **What do you dislike about Chainguard?** Nothing yet it can be expensive. Learn g curve **What problems is Chainguard solving and how is that benefiting you?** Chainguard is getting a lot of attention because it solves a very real (and growing) problem: software supply chain security—basically making sure the code and containers you run aren’t quietly compromised. ### 24. Great Catalog of FIPS-Compliant Images with Easy Base Image Customization **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Security and Investigations | Mid-Market (51-1000 emp.) **Reviewed Date:** January 21, 2026 **What do you like best about Chainguard?** There is a good catalog of fips compliant images, and they support customization by adding packages directly to a base image. **What do you dislike about Chainguard?** Some image were missing which complicated the process of migrating all our services. **What problems is Chainguard solving and how is that benefiting you?** It is helping us achieve fedramp high which expands our client base. ### 25. Easy-to-Use, Secure Container Images **Rating:** 4.0/5.0 stars **Reviewed by:** Angel B. | Customer Support Supervisor, Small-Business (50 or fewer emp.) **Reviewed Date:** November 06, 2025 **What do you like best about Chainguard?** The container images are easy to use and provide a secure environment. **What do you dislike about Chainguard?** The integration process is not straightforward, and the cost can be high for individual users. **What problems is Chainguard solving and how is that benefiting you?** Vulnerability scanner which helps me detect complex issues easily. ### 26. Seamless CI/CD Integration and Transparent SBOMs with Chainguard Libraries **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Small-Business (50 or fewer emp.) **Reviewed Date:** March 17, 2026 **What do you like best about Chainguard?** The seamless integration with our existing CI/CD pipeline, along with Chainguard’s transparency through SBOM and the overall Chainguard Libraries experience. **What do you dislike about Chainguard?** I antipate Chainguard's capability to audit which JS Libraries appear from Chainguard vs NPM even after they're drawn through JFrog/Arctifactory. **What problems is Chainguard solving and how is that benefiting you?** Transparency and risk mitigation. ### 27. Secure, Minimal, and Well-Supported — A Great Experience with Room for Transparency Improvements **Rating:** 5.0/5.0 stars **Reviewed by:** Chandra G. | Senior Release/DevOps Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** May 19, 2025 **What do you like best about Chainguard?** Chainguard Images have been a transformative addition to our software supply chain strategy. The minimal, hardened, and continuously verified container images significantly reduce our attack surface while ensuring compliance and operational reliability. One of the biggest pain points in container security is managing outdated or bloated base images filled with vulnerabilities. Chainguard solves this brilliantly with distroless, signed images that are continuously updated and come with built-in provenance and SBOMs. It’s clear they’ve thought deeply about what modern development teams need to build secure-by-default applications. What really sets Chainguard apart, though, is their exceptional support. From day one, their team has been proactive, responsive, and genuinely invested in our success. Whether it was help with integration, optimizing our image choices, or answering security policy questions, their support engineers went above and beyond. Their documentation is also thorough and developer-friendly, which makes onboarding smooth and intuitive. In summary: Chainguard Images bring peace of mind to any DevSecOps team, and their world-class support makes them a true partner in software supply chain security. Highly recommended for anyone building or deploying containers in a production environment **What do you dislike about Chainguard?** One area that could use improvement is transparency around source code and SBOM (Software Bill of Materials) access. While the images are secure and well-maintained, having easier access to corresponding source repositories and complete SBOMs—preferably in an automated or standardized format—would help us meet internal audit and compliance requirements more seamlessly. **What problems is Chainguard solving and how is that benefiting you?** The built-in signing, provenance, and emphasis on secure defaults have given our team increased confidence in what we’re deploying. Integration was straightforward, and the developer experience has been smooth from the start. **Official Response from Sarah Haberman:** > Chandra, thanks for taking the time to write such a thorough review! 🙌 ### 28. The gold star vendor: sales, onboarding implementation, support, and product **Rating:** 5.0/5.0 stars **Reviewed by:** Charlie G. | SRE Manager, Mid-Market (51-1000 emp.) **Reviewed Date:** July 24, 2025 **What do you like best about Chainguard?** The chainguard team was able to meet us where we were at, move extremely quickly to meet our deadlines, and everything _just worked_. **What do you dislike about Chainguard?** Wiz sometimes detects false positives in cgr images. **What problems is Chainguard solving and how is that benefiting you?** Passing audits, and getting our vuln counts to zero. **Official Response from Sarah Haberman:** > Charlie, what a great review! We'll take that gold star - thank you! ⭐️ ### 29. We used chainguard base images to **Rating:** 5.0/5.0 stars **Reviewed by:** Ken A. | Principal Application Architect, Human Resources, Enterprise (> 1000 emp.) **Reviewed Date:** November 18, 2024 **What do you like best about Chainguard?** Using chainguard essentially eliminates container library vulnerabilities coming from our Docker base images (as well as standard package installs!). When we scan our chainguard based images with grype, or snyk, the only vulnerabilities left are from our application installs. We are in the process of implementing chainguard base images across the enterprise, and are expecting over 80% reduction in open vulnerabilities across the board. Chainguard's customer support is excellent, they are one of the best software vendors I have ever worked with. **What do you dislike about Chainguard?** The only real downside is you have to modify your Dockerfiles to work with the Wolfi OS, which is alpine-like (i.e. you have to use apk, etc.) If your current base image is not alpine based, there is some learning curve and work. **What problems is Chainguard solving and how is that benefiting you?** We have a significant backlog of known container vulnerabilities in our containers. Hardening and managing clean base images is a lot of work and takes specialized expertise that our development teams don't have. Changuard provides base images that work out of the box for most of our tech stacks and alleviates the need to manage hardened base images ourselves. **Official Response from Kirby Koo:** > Thank you, Ken! ### 30. Chainguard has changed the game when it comes to remediating vulns in images. **Rating:** 5.0/5.0 stars **Reviewed by:** Dan E. | Senior Cybersecurity Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** August 11, 2024 **What do you like best about Chainguard?** I love the ease of use for our dev teams to switch over and cut their vulnerabilities down. Integrating it into our pipelines has been very easy. Customer support has been excellent and responsive. **What do you dislike about Chainguard?** At this time of using the product I do not have any dislikes **What problems is Chainguard solving and how is that benefiting you?** Teams have been struggling to bring their vulnerabilities down on their images. This takes so much off their plates and not having to worry about it. **Official Response from Kirby Koo:** > Aww, thanks for taking the time to review us! Your support means a lot :) ### 31. Great FIPS compliant images **Rating:** 5.0/5.0 stars **Reviewed by:** VISHNU V. | DevOps Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** May 15, 2025 **What do you like best about Chainguard?** Zero CVE images which we can directly consume in our products **What do you dislike about Chainguard?** Nothing as of now which we have encountered **What problems is Chainguard solving and how is that benefiting you?** We can directly get the FIPS certified images and use them in our products which we ship to federal customers by using the images from chainguard as base images **Official Response from Sarah Haberman:** > Thanks for the great review, Vishnu! So happy to hear that our FIPS containers are helping you ship to federal customers! 🚀 ### 32. Fantastic Product and an Even Better Team! **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Enterprise (> 1000 emp.) **Reviewed Date:** May 23, 2025 **What do you like best about Chainguard?** From scoping to project completion the Chainguard team was amazing to work with and provided excellent customer support! The ease of use, implementation and integration also helped! Looking forward for new features being released! **What do you dislike about Chainguard?** I have found no issue while working with the product so far! **What problems is Chainguard solving and how is that benefiting you?** Chainguard is helping us reduce vulnerabilities by shifting left and reducing engineering time that it takes to patch vulnerabilities, saving us time and money! **Official Response from Sarah Haberman:** > Thanks for the kind words! We’re so glad you’ve had a great experience with our team 🙌 ### 33. Game-Changer **Rating:** 5.0/5.0 stars **Reviewed by:** Karl H. | Senior Principal Architect, Enterprise (> 1000 emp.) **Reviewed Date:** August 28, 2024 **What do you like best about Chainguard?** Since implementing Chainguard's hardened base images, we've seen a dramatic reduction in vulnerabilities—over 70%. This reduction not only enhances our security posture but also saves our engineering teams an enormous amount of time that would otherwise be spent on vulnerability management and patching. Chainguard's approach introduces excellent security practices out of the box, meaning our engineers no longer have to worry about critical security concerns like rootless containers, proper permissions, and secure registries. Chainguard sets itself apart by providing supply chain security through purpose-built packages in their registry, making it clear that while competitors might still be playing catch-up in the minor leagues, Chainguard is clearly in a league of its own, setting the standard for supply chain security. We've maximized the value of these images by ensuring reuse across our organization, categorizing images into language-based and application-based groups. This strategy allows us to gain the most value through frequent reuse of language-based images, while our centralized platform engineering teams benefit from using application-specific images at a different scale. To drive adoption, we've integrated Chainguard images into our centralized internal developer portal, which our developers are already familiar with and use regularly. This seamless integration has significantly boosted adoption rates, further supported by our vulnerability management reduction program. Through this program, we've been able to recommend Chainguard images, reassuring teams that transitioning will save time and energy. The service level agreements (SLAs) provided by Chainguard are also very attractive. The high speed of image updates ensures that we are always protected with the latest security enhancements. We've even integrated Chainguard into our automatic update tools, so our developers are always confident that they're working with the most up-to-date versions. Overall, Chainguard's hardened base images have been a game-changer for our organization, providing unparalleled security, efficiency, and peace of mind. **What do you dislike about Chainguard?** The documentation at times fall a little behind and the modern authentication mechanisms at times can create difficulties in integrating with other existing platforms that are not yet supportive of technologies like OIDC. Quite a few of the images require rework to convert from a standard Dockerhub image however, I believe that's expected. **What problems is Chainguard solving and how is that benefiting you?** Reducing container, image, vulnerabilities and creating a solid secure base to build upon **Official Response from Kirby Koo:** > Thank you, Karl!! Your support means the world to us :) ### 34. Chainguard is very easy to use and deploy **Rating:** 4.5/5.0 stars **Reviewed by:** Drew W. | Senior Principal Software Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** November 18, 2024 **What do you like best about Chainguard?** I was extremely happy with how trivial it was to swap in their FIPS images in place of the FOSS images we were using. They had a whole onboarding call, but we'd already deployed them to development as it was that fast and easy. **What do you dislike about Chainguard?** Their pricing was a battle, they don't differentiate between very simple images and very complex ones, so making the case to use them fully is very difficult. I think a pricing model that more accurately reflects their value add would help, as some images are inherently more complex to replace than others. **What problems is Chainguard solving and how is that benefiting you?** They have FIPS support and vulnerability management via SCA. **Official Response from Kirby Koo:** > Thank you for the support, Drew! ### 35. Quick and Easy Migration **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Internet | Enterprise (> 1000 emp.) **Reviewed Date:** April 29, 2025 **What do you like best about Chainguard?** Migrating to using Docker images from Chainguard was a pretty seamless experience and it results in better software supply chain security. I also received a lot of quick help from the Chainguard team when I was coming across a problem in my Dockerfile script! **What do you dislike about Chainguard?** It might look very overwhelming to migrate at first glance. It might help to emphasize that it's quick and fairly painless. **What problems is Chainguard solving and how is that benefiting you?** A lot of our services use Dockerfiles and it seems that many of them had hundreds of vulnerabilities. Using Chainguard ensures stronger software supply chain practices. **Official Response from Sarah Haberman:** > Thanks so much for the thoughtful review! We're thrilled Chainguard is helping you reduce vulnerabilities and strengthen your software supply chain 😎 ### 36. I am surprised this is a business. **Rating:** 2.5/5.0 stars **Reviewed by:** Verified User in Information Services | Enterprise (> 1000 emp.) **Reviewed Date:** May 01, 2025 **What do you like best about Chainguard?** Sometimes the images are drop in compatible. **What do you dislike about Chainguard?** Many images have arbitrarily changed the entrypoint + command args, and require changes on every use. **What problems is Chainguard solving and how is that benefiting you?** None. We have no automation to keep the images up to date, thus CVEs in older images are present in our products. **Official Response from Sarah Haberman:** > Thank you for taking the time to share your feedback. We’re genuinely sorry to hear that your experience hasn’t met expectations. We aim to provide secure container images that are easy to implement, and we understand how critical compatibility is. While we strive for drop-in compatibility whenever possible, some of our container images do diverge from traditional images, typically for documented security reasons. For example, removing the shell is a deliberate design choice to reduce attack surface and strengthen supply chain security — We understand these choices can require changes to how entry points and commands are handled in your environment, but we believe this approach is necessary to make our container images secure-by-default. If you’re open to sharing more information with your Technical Success Manager about how we can best support you, we'd greatly appreciate the continued feedback. ### 37. Great product, great customer service **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Insurance | Mid-Market (51-1000 emp.) **Reviewed Date:** July 24, 2025 **What do you like best about Chainguard?** A wealth of images and packages at the highest standard of security. **What do you dislike about Chainguard?** It’s kinda pricey for a startup, but, ultimately, worth it **What problems is Chainguard solving and how is that benefiting you?** Building rocket images on top of very secure base images, using secured packages. **Official Response from Sarah Haberman:** > Thanks so much for your review! ### 38. Tech is great, and the team is excellent. **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Defense & Space | Enterprise (> 1000 emp.) **Reviewed Date:** November 18, 2024 **What do you like best about Chainguard?** Chainguard has allowed us to develop at speed and scale allowing us to focus on features more than the development overhead, especially in mitigating CVEs. That said, the team that we interact with is the best part of Chainguard. Responsive, intelligent, and customer obsessed is the main reason we value and continue our relationship. Couldn't be happier. **What do you dislike about Chainguard?** There isn't anything we don't like that I can think of. **What problems is Chainguard solving and how is that benefiting you?** Chainguard helps our engineers focus on developing features. Previously, most time was spent trying to mitigate CVEs and our customers were getting new features deployed. Using Chainguard has significantly shifted that paradigm. Developing in the DoD landscape is harder than the private sector and this helps a lot. **Official Response from Kirby Koo:** > Wow! The feeling is mutual :) Thank you! ### 39. Simplifying security **Rating:** 5.0/5.0 stars **Reviewed by:** Leonardo Z. | Senior Software Architect, Enterprise (> 1000 emp.) **Reviewed Date:** November 07, 2024 **What do you like best about Chainguard?** Security is hard on its own, and while many vendors focus on selling detection products, Chainguard does the opposite and solve a painful problem with little effort from users. **What do you dislike about Chainguard?** Chainguard offers some free to use images, but only "latest" version and not stable versions. This makes impossible to use as an individual or for open source projects. **What problems is Chainguard solving and how is that benefiting you?** Zero security vulnerability containers. **Official Response from Kirby Koo:** > Thank you, Leo! We appreciate you! ### 40. Looking for the best distroless images on the market? Chainguard is the way to go! **Rating:** 5.0/5.0 stars **Reviewed by:** Michael W. | Cyber Security Consultant (AppSec Area), Enterprise (> 1000 emp.) **Reviewed Date:** July 24, 2024 **What do you like best about Chainguard?** I wrote a paper on container image security, evaluating the security of containers through reduction of potentially vulnerable components. It concludes that the usage of component reduction methods significantly reduces the amount of security vulnerabilities within container images. It also finds that, even though the probability of exploitation of the majority of vulnerabilities found by scanners is very low, employing them still is a strategically sound decision. When comparing different images with component reduced (i.e. "distroless images") alternatives, chainguard did by far the best job. As a consultant supporting product security teams in large enterprises we are recommending to integrate chainguard images to development teams and decision makers. It will save a lot of dicsussions, headaches and money! Please find the paper here: https://mwager.de/assets/component_reduction_paper.pdf **What do you dislike about Chainguard?** Nothing so far. Have a look at the paper, it clearly shows that Chainguard did the best job compared to all other alternatives. **What problems is Chainguard solving and how is that benefiting you?** Chainguard provides container images containing zero CVEs (security vulnerabilities within the supply chain) for a lot of relevant runtimes and popular services, is easy to use and integrate and also provides excellent documentation. **Official Response from Kirby Koo:** > Thank you for sharing your research paper & review, Michael! We appreciate it! ### 41. Good range of base images, great support **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Banking | Enterprise (> 1000 emp.) **Reviewed Date:** December 02, 2024 **What do you like best about Chainguard?** Since adopting Chainguard the number of vulnerabilities our scanning tools have found in our services has dramaticdally decreased. Chainguard also offers a good range of base images and has been able to build custom app images for us. **What do you dislike about Chainguard?** Initial learning curve on how to migrate from standard base images to Chainguard images. We have had issues integrating Chainguard's Docker registry with out artifact storage tool. **What problems is Chainguard solving and how is that benefiting you?** Automating the patching of our base images, so our team doesn't need to worry about it. **Official Response from Kirby Koo:** > Thank you for the review! ### 42. Chainguard makes securing applications much easier **Rating:** 4.5/5.0 stars **Reviewed by:** Brad M. | Senior DevOps Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** September 05, 2024 **What do you like best about Chainguard?** It's simplicity. Changing from a regular Image to use a Chainguard image as the base helps mitigate a lot of vulnerabilities, and it's a change any developer would be able to easily implement. This is something that I would recommand to any developer or business that is looking to harden their applications. Securing the base image is the first step everyone should take. **What do you dislike about Chainguard?** I have some uncertaincies about what the support will look like for users using the Developer Free tier in the future. Would like them to sllow all image versions and not just latest/stable for Free Tier. **What problems is Chainguard solving and how is that benefiting you?** Bring simplicity to security. It hardens the application image that our containers use to run. **Official Response from Kirby Koo:** > Thank you, Brad! ### 43. Time-Saving, Secure Containers Solutions! **Rating:** 4.5/5.0 stars **Reviewed by:** Matheus G. | Software Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** August 23, 2024 **What do you like best about Chainguard?** Chainguard allows developers to save a lot of time and effort by providing ready-to-use container images that are secure. In addition, the images provided are very lightweight. **What do you dislike about Chainguard?** The custom linux distribution may be harder to work with, but wolfi-base is still quite similar to Alpine and hence not too complex. **What problems is Chainguard solving and how is that benefiting you?** They provide off the shelf image solutions to secure you deployment/release containers. In other words, Chainguard allows you to secure the environment in which you deploy your applications to. ### 44. Extremely satisfy with Chainguard support **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Hospital & Health Care | Enterprise (> 1000 emp.) **Reviewed Date:** November 22, 2024 **What do you like best about Chainguard?** Chainguard support is excellent and fast. Chainguard images are lean, secure and easy to integrate. Updates are frequent and easy to implement. Users can pull any supported imgages with up-to-date features for frequency of use. **What do you dislike about Chainguard?** Base chainguard images include minimum standard security configurations. Distroless prodution images without shell cause some inconvenience for testing, debugging purposes. Users need to learn different way to search and add packages. **What problems is Chainguard solving and how is that benefiting you?** Using Chainguard container images help minimizing security vulnerabities and attack surfaces. **Official Response from Kirby Koo:** > Love to hear it! Thank you! ### 45. Easy and positive experience **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Mid-Market (51-1000 emp.) **Reviewed Date:** November 20, 2024 **What do you like best about Chainguard?** Attentive support team Well documented service Easy to use portal/UI Flexible to customizations we requested **What do you dislike about Chainguard?** None I can think of. The limiting factor for chainguard is the upstream product maintenaners speed. **What problems is Chainguard solving and how is that benefiting you?** We use chainguard images to reduce vulnerabilities and to support FIPS compliance. They provide updates to OS packages and product dependencies which takes a singificant effort for product development teams. FIPS compliance also important for ua to deliver our products to federal government customers/prospects. Chainguard makes it easy for us to maintain FIPS compliance by providing us base FIPS images and 3rd party FIPS images. We don't have to do the research and maintenance on our side. **Official Response from Kirby Koo:** > We appreciate the support. Thank you so much! ### 46. Secure software supply chain **Rating:** 5.0/5.0 stars **Reviewed by:** Andy T. | Mid-Market (51-1000 emp.) **Reviewed Date:** April 09, 2024 **What do you like best about Chainguard?** Chainguard has a rock solid product offering that's allowed our teams to build on top of a secure foundation. Chainguard's Linux (un)distro and vast library of language runtimes and open source building blocks allowed us to compose a secure software catalog of first and third party software to distribute to our customers. On top of this, all of Chainguard's engineering and customer success staff have been a great pleasure to work with! All our collab is over Slack and they feel like an extended part of the team. **What do you dislike about Chainguard?** This falls more to us than Chainguard, but ways to better track all the places we're making use of their base images would be helpful. **What problems is Chainguard solving and how is that benefiting you?** Chainguard helps our engineering teams secure our software supply chain and build on top of "sanitized" open source. ### 47. Spend less time talking about CVEs **Rating:** 5.0/5.0 stars **Reviewed by:** Mark M. | Organizer, Enterprise (> 1000 emp.) **Reviewed Date:** April 02, 2024 **What do you like best about Chainguard?** We've all seen a ton of projects that will detect CVEs but then you have the secondary problem of deciding where the CVE originated from (base image or first party code), how to patch or upgrade, when to patch so not to impact customers, who should own the updates, what to tell customers and compliance... Chainguard Images removes the CVEs -- no debate, no CVSS, no triaging, no work tickets. It's done. Enterprises that appreciate this problem will see an ROI in weeks if not days. Not to mention that enterprise customers get an SLA for patches -- I challenge anyone to do what they are doing internally without spending millions on a team who does this as a full time job. Then for the orgs that are investing in the software supply chain risks, they provide provenance, signing, and an accurate SBOM out-of-The box to start your journey in managing a secure software supply chain. **What do you dislike about Chainguard?** The free offering is (reasonably) only the :latest tag which might be fine for personal projects but not most production environments. I don't know the costs for individuals or small orgs (I'm an enterprise customer) but its not free. **What problems is Chainguard solving and how is that benefiting you?** This solves a major piece of our compliance story. We need to demonstrate to compliance that we are properly managing CVEs that are impacting our customers. It's also planned to rolled out everywhere in our org as part of a Gold Image project. ### 48. Software supply chain starts at the container level! **Rating:** 5.0/5.0 stars **Reviewed by:** Nuno D. | Senior IT System Analyst, Enterprise (> 1000 emp.) **Reviewed Date:** December 19, 2023 **What do you like best about Chainguard?** Since its inception, Chainguard has been modernizing the software supply chain ecosystem and one of their most critical work, and often thought for granted, is their containers image repository. In a perfect world, every end-user company, would create container images that are signed (ever heard about Sigstore? Chainguard created it), have a software bill of materials (SBOMs) and are scanned (0 CVEs) before being used in production. Well, we don't live in such world and Chainguard, instead of playing the role of "use our base images at your own risk", they moved towards the hardest direction and provide us with updated, signed and scanned base images at their own costs! Want to have the latest node.js image with 0 CVEs? docker/podman/nerdctl pull cgr.dev/chainguard/node. That's that easy. Nothing to implement, change the source repository and you're good to go. Of course, for production you should never run the latest image and instead target a specific version. This is where their customer support comes into play by helping you customizing the usage of their images to your needs. Chainguard took ownership of what I call a "grey area", where providers and customers tend to finger point when something goes wrong. And by doing so, with their team of experts, I can confidently say the container ecosystem feels a little bit more secure, and this means a lot. **What do you dislike about Chainguard?** Maybe the only downside I can see about Chainguard efforts, is to know if keeping all these 0 CVEs images on the long term will not impact other sections/innovations due to this very demanding workload. The company seems to grow at a good pace (not too fast or slow), however the security is a daily fight and the ressources can be limited. I fully trust their solutions, and believe they automated the most of their tasks. Still, it's a lot of efforts for "only one side" of Chainguard's offering. **What problems is Chainguard solving and how is that benefiting you?** Software supply chain security by providing sane container images. By giving us a "secure start", we can focus on the software development and continue the secure supply chain up to production. ### 49. Mix of feelings **Rating:** 3.5/5.0 stars **Reviewed by:** Verified User in Computer Software | Mid-Market (51-1000 emp.) **Reviewed Date:** December 05, 2024 **What do you like best about Chainguard?** 0 CVE's, Good support, Very good technical team **What do you dislike about Chainguard?** Sometimes we need remind them to update some images **What problems is Chainguard solving and how is that benefiting you?** Boost for FedRamp **Official Response from Sarah Haberman:** > Hey there! Thanks for your review and feedback. It's great to hear that Chainguard is helping with your FedRAMP journey! ### 50. My experiences using Chainguard Nodejs base image was amazing! **Rating:** 4.5/5.0 stars **Reviewed by:** Emmanuel F. | Software developer, Small-Business (50 or fewer emp.) **Reviewed Date:** September 12, 2024 **What do you like best about Chainguard?** - Very small image size, - Very small to none CVEs from my experiences. - Very large repo supporting many languages and technologies, - Ease to use, - Ease of implementation. **What do you dislike about Chainguard?** A great part of it, is free, but for some custom implementation or features , you may pay. **What problems is Chainguard solving and how is that benefiting you?** CVEs, better quality software. - [View Chainguard pricing details and edition comparison](https://www.g2.com/products/chainguard/reviews?section=pricing&secure%5Bexpires_at%5D=2026-06-28+15%3A34%3A43+-0500&secure%5Bsession_id%5D=bac6fb3d-3380-4a71-9db9-998298f09b5e&secure%5Btoken%5D=7afb36ae7cd1f0211be3ccc91bcaee0bacfdd3e082799c20601f1b28fabc1f7f&format=llm_user) ## Chainguard Integrations - [Amazon Inspector](https://www.g2.com/products/amazon-inspector/reviews) - [Aqua Security](https://www.g2.com/products/aqua-security/reviews) - [CrowdStrike Falcon Cloud Security](https://www.g2.com/products/crowdstrike-falcon-cloud-security/reviews) - [Cursor](https://www.g2.com/products/cursor/reviews) - [Datadog](https://www.g2.com/products/datadog/reviews) - [Endor Labs](https://www.g2.com/products/endor-labs/reviews) - [GitHub](https://www.g2.com/products/github/reviews) - [GitHub Inc.](https://www.g2.com/products/github-inc/reviews) - [GitLab](https://www.g2.com/products/gitlab/reviews) - [Google Artifact Registry](https://www.g2.com/products/google-artifact-registry/reviews) - [Google Cloud](https://www.g2.com/products/google-cloud/reviews) - [GovSignals](https://www.g2.com/products/govsignals/reviews) - [JFrog](https://www.g2.com/products/jfrog-2024-03-28/reviews) - [Keeper Secrets Manager](https://www.g2.com/products/keeper-secrets-manager/reviews) - [Qualys WAS](https://www.g2.com/products/qualys-was/reviews) - [Snyk](https://www.g2.com/products/snyk/reviews) - [Sysdig Secure](https://www.g2.com/products/sysdig-sysdig-secure/reviews) - [Upwind](https://www.g2.com/products/upwind/reviews) - [VulnCheck Exploit and Vulnerability Intelligence](https://www.g2.com/products/vulncheck-exploit-and-vulnerability-intelligence/reviews) - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) ## Chainguard Features **Administration** - Risk Scoring - Secrets Management - Security Auditing - Configuration Management **Monitoring** - Continuous Image Assurance - Behavior Monitoring - Observability **Protection** - Dynamic Image Scanning - Runtime Protection - Workload Protection - Network Segmentation ## Top Chainguard Alternatives - [Snyk](https://www.g2.com/products/snyk/reviews) - 4.5/5.0 (134 reviews) - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) - 4.7/5.0 (810 reviews) - [FortiCNAPP](https://www.g2.com/products/forticnapp/reviews) - 4.4/5.0 (383 reviews)