# Chainguard Reviews **Vendor:** Chainguard **Category:** [Container Security Tools](https://www.g2.com/categories/container-security-tools) **Average Rating:** 4.8/5.0 **Total Reviews:** 51 ## About Chainguard Chainguard Containers are a guarded catalog of minimal, zero-CVE container images with a best-in-class CVE remediation SLA (7 days for critical severity, 14 days for high, medium and low) that helps customers build and deploy software better. Modern software development practices and deployment pipelines require secure, up-to-date containerized applications for cloud-native applications. Chainguard builds minimal images that contain only the components required to build and run your containers entirely from source in hardened build infrastructure. Aimed at engineering organizations and security teams alike, Chainguard Containers reduce costly engineering toil around vulnerability management, enhance the security posture of applications by eliminating attack surface, and unlock revenue by simplifying compliance with key frameworks and customer requirements. Chainguard Containers – Value Pillars • Reduce cost of engineering toil: Engineers are a precious resource meant for building innovative platforms and products, not non-strategic / un-differentiated toil like patching vulnerabilities • Secure foundation for open source software: Minimal, trusted, and secure open source components for every developer and every stack • Achieve and maintain continuous compliance: Easily operate in compliance frameworks such as FedRAMP, cATO, StateRAMP, PCI-DSS, HIPAA, SOC2, NIS2, and CMMC • Accelerate revenue by building better products faster: Enable engineers to deliver new products and better features, securely with speed Chainguard Containers – Key Capabilities • Best-in-class CVE remediation SLA: Count on an industry-leading remediation SLA of 7 days for critical CVEs and 14 days for high, medium, and low • Secure-by-default, transparent by design: Adopt trusted, zero-CVE container images with full build-time generated SBOMs and digitally signed attestations for total transparency • FIPS and STIGs to simplify continuous compliance: Maintain compliance for critical frameworks like FedRAMP, PCI-DSS, and SOC 2 with hardened images that come with kernel-independent FIPS validation and OS-Level STIGs by default • 1,300+ purpose-built images that are always up to date: Choose from our growing catalog of minimal container images rebuilt from source daily with “nano-updates,” eliminating major OS version upgrades ## Chainguard Pros & Cons **What users like:** - Users appreciate the **ease of use** of Chainguard, enabling quick adoption of secure practices without additional complexity. (9 reviews) - Users commend Chainguard's **exceptional customer support** , highlighting proactive help and thorough documentation for a smooth experience. (8 reviews) - Users value Chainguard's **enhanced security** through vulnerability-free images and proactive CVE management, ensuring safe software supply chains. (5 reviews) - Users value the **comprehensive security** of Chainguard, ensuring minimal vulnerability and effortless integration into their workflows. (4 reviews) - Users value the **strong security approach** of Chainguard, ensuring minimal and well-maintained container images for peace of mind. (4 reviews) - Easy Integrations (4 reviews) - Users find the **onboarding process seamless** , allowing for quick integration of Chainguard's secure images in development. (4 reviews) - Threat Detection (4 reviews) - Features (3 reviews) - Scanning Technology (3 reviews) **What users dislike:** - Users report **missing features** in Chainguard, complicating service migration and package compatibility during setups. (3 reviews) - Users find the **complex setup** of Chainguard challenging, particularly with integrations and configurations for various environments. (2 reviews) - Users face a **difficult learning curve** due to the need to adapt Dockerfiles and package management. (2 reviews) - Users find Chainguard to be **expensive** , especially for individual users facing high integration costs. (2 reviews) - Users find **integration issues** frustrating, noting complexity and high costs during the transition to Chainguard. (2 reviews) - Users find Chainguard's **pricing issues** challenging, especially for smaller teams needing tailored solutions. (2 reviews) - Insufficient Information (1 reviews) - Learning Curve (1 reviews) - Navigation Difficulty (1 reviews) - Search Difficulty (1 reviews) ## Chainguard Reviews ### 1. Secure and Seamless Software Delivery **Rating:** 5.0/5.0 stars **Reviewed by:** Aaron S. | Enterprise (> 1000 emp.) **Reviewed Date:** March 17, 2026 **What do you like best about Chainguard?** I appreciate how Chainguard reduces CVEs through its secure-by-default model and fast remediation time. I'm impressed by Chainguard's dedication to secure software delivery and its continuous expansion of complementary products. The company exhibits the passion of a startup combined with the dedication of a well-developed organization. I also find it extremely easy to add the nightly downloads to Artifactory and integrate them into GitLab pipelines. Additionally, I use complementary products like libraries, advisories, and soon-to-come agent skills, which are quite beneficial. **What do you dislike about Chainguard?** I don't like compensating for bad vendor practices like vulnerable code being in library and mod files. While not executable, this causes administrative headaches. **What problems is Chainguard solving and how is that benefiting you?** I use Chainguard to secure containers and libraries. It reduces CVEs with a secure by default model and offers fast remediation. ### 2. Secure, Low-Vulnerability Containers That Integrate Seamlessly into Our Pipelines **Rating:** 4.5/5.0 stars **Reviewed by:** Daniel R. | Managing Director, Small-Business (50 or fewer emp.) **Reviewed Date:** January 19, 2026 **What do you like best about Chainguard?** Chainguard zero- and minimum-vulnerability containers help us deliver secure services and products to our customers with less effort and reduced cybersecurity risk. These containers are a 1-to-1 replacement for existing publicly available containers, and they integrate easily into our development pipelines with no additional effort. **What do you dislike about Chainguard?** Chainguard containers are expensive. However, when I consider how many staff hours go into building and maintaining hardened, low-vulnerability containers for applications, the cost does pay off. **What problems is Chainguard solving and how is that benefiting you?** Chainguard helps reduce cybersecurity risks and the effort associated with our applications by providing secure open-source containers. This, in turn, lowers our need to build and maintain low-vulnerability forks of open-source packages. ### 3. Secured Workloads with Excellent Support **Rating:** 4.0/5.0 stars **Reviewed by:** Taruj G. **Reviewed Date:** January 13, 2026 **What do you like best about Chainguard?** I like the hardened images and their support for debugging and other channels. I appreciate the vLLM and OSS support along with the images that we need major upgrades for. I also like their release cadence and find their customer support to be good. I value the minimal, hardened, continuously patched base images that work with vLLM, which has a fast release cadence and evolving dependencies. I also like the immutable image tags, SBOM, and continuous rebuild features. **What do you dislike about Chainguard?** I find the lack of easy migration guides and more FDE support frustrating. Also, the initial setup was problematic for GPU services as core NVIDIA images are not supported. **What problems is Chainguard solving and how is that benefiting you?** I use Chainguard for hardened images, better CVE metrics, securing workloads without root access, and aligning with compliance requirements. ### 4. Essential for CVE-Free Container Management **Rating:** 5.0/5.0 stars **Reviewed by:** Mathieu L. | Head Of Cloud Infrastructure, Mid-Market (51-1000 emp.) **Reviewed Date:** November 20, 2025 **What do you like best about Chainguard?** I appreciate Chainguard's extensive range of catalog with more than 500 public images to choose from, which significantly enhances my experience by ensuring that an image such as Linkerd is available and likely vulnerability-free compared to other sources like DockerHub. The availability of such a vast selection of images provides us with assurance and flexibility, making it easier to maintain security standards. I value the proactive approach of Chainguard in addressing CVEs by ensuring the images are rebuilt daily, which gives me confidence in their security posture. Additionally, I find the initial setup process to be very easy, and I enjoy the self-management feature allowing me to choose the right images from the catalog effortlessly. **What do you dislike about Chainguard?** It would be great if Chainguard's container registry could sync with AWS ECR so I could use my own private registry instead. I believe it's being worked on though. **What problems is Chainguard solving and how is that benefiting you?** I use Chainguard for vulnerability-free container images, addressing CVE vulnerabilities and rebuilding daily. It offers over 500 compatible public images, enhancing security by avoiding CVE-prone DockerHub alternatives. ### 5. Effortless Supply Chain Security with Seamless Integration **Rating:** 5.0/5.0 stars **Reviewed by:** Gopalji S. | Technology Consultant, Enterprise (> 1000 emp.) **Reviewed Date:** November 19, 2025 **What do you like best about Chainguard?** What I appreciate most about Chainguard is how it simplifies and strengthens software supply chain security. The platform offers transparent visibility into dependencies, vulnerabilities, and build pipelines, all without introducing unnecessary complexity. I also value its seamless integration with our existing workflows, which enables our team to identify potential issues early and maintain confidence in our software releases. The combination of automation and practical insights truly sets it apart. **What do you dislike about Chainguard?** The main challenge I’ve encountered with Chainguard is that the initial setup and configuration process can be somewhat time-consuming, particularly if you’re dealing with complex pipelines or managing several environments. After the setup is complete, everything operates smoothly, but getting all the integrations in place and fine-tuning the system at the start does demand some effort. **What problems is Chainguard solving and how is that benefiting you?** Chainguard addresses the challenges of software supply chain security and dependency management. It enables us to spot vulnerabilities, apply necessary policies, and guarantee that only trusted components are included in our builds. As a result, we experience fewer security risks, quicker identification of potential problems, and greater assurance in the reliability of our software releases. The tool streamlines our workflow by saving time, minimizing manual checks, and providing our team with peace of mind that our pipelines remain secure. ### 6. Effortless Security and Zero CVEs for Container Images **Rating:** 5.0/5.0 stars **Reviewed by:** anan H. | Senior DevOps, Computer Software, Mid-Market (51-1000 emp.) **Reviewed Date:** November 18, 2025 **What do you like best about Chainguard?** Chainguard provides a strong security approach for container images and supply chain hygiene the images are minimal and well maintained by them and fully SBOM verified with consistently updated which reduces operational risk the platform makes it easy to adopt secure by default practices without adding overhead to CI/CD pipelines and it helps a security companies to have images with zero CVEs **What do you dislike about Chainguard?** I think the only concern is the pricing that can be a bit high for smaller teams **What problems is Chainguard solving and how is that benefiting you?** Chainguard solves the ongoing challenge of keeping container images secure with zero CVEs instead of start patching these images from week to week ### 7. Why we chose Chainguard for securing container images **Rating:** 5.0/5.0 stars **Reviewed by:** Naweed J. | Lead Engineer - Platform, Enterprise (> 1000 emp.) **Reviewed Date:** May 27, 2025 **What do you like best about Chainguard?** Chainguard’s minimalist, hardened container images with zero known CVEs, is going to significantly reduce our vulnerability management overhead. Not having to constantly chase patch cycles will save our teams countless hours. The images are not just secure by default but gives us the confidence in both their integrity and provenance. We are currently looking at wider adoption across our teams and the society. What sets Chainguard apart is their commitment to transparency and compliance, making them a top choice for organisations with high security and regulatory requirements. If you are looking to build a secure, resilient container strategy, Changuard is worth serious consideration. **What do you dislike about Chainguard?** This is very stage at the moment, but we look forward to working closely with Chainguard for feedbacks we get from our team as we start our wider rollout. **What problems is Chainguard solving and how is that benefiting you?** We spend countless hours triaging CVEs, chasing patches and validating fixes - only to repeat the process when another image or dependency gets flagged. This endless cycle drains time, and slows down releases, Chainguard addresses this by eliminating the problem at the source with their secure, minimal images. Shift left has become a must in modern DevSecOps, pushing security earlier into the development cycle to catch vulnerabilities before they reach production. By embedding security early in our CICD pipelines, Chainguard will allow the team to focus on building features and not fixing vulnerabilities, it's about making left lighter. **Official Response from Sarah Haberman:** > Hi Naweed - Thanks for sharing your experience! It's great to hear that our approach is giving your teams more time to focus on building. ### 8. Great Product Innovation Backed by Outstanding Customer Service **Rating:** 5.0/5.0 stars **Reviewed by:** Moshika S. | Enterprise (> 1000 emp.) **Reviewed Date:** March 17, 2026 **What do you like best about Chainguard?** Great Customer service, our account manager is so on top of things! Great product and continued innovation **What do you dislike about Chainguard?** .Net availability for Chainguard libraries isn’t available yet and not sure if it’s on the roadmap. **What problems is Chainguard solving and how is that benefiting you?** Low resource needs for CVE resolution ### 9. Many fewer CVE tickets let me focus on real work **Rating:** 5.0/5.0 stars **Reviewed by:** Ben C. | Senior Software Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** May 16, 2025 **What do you like best about Chainguard?** My team had a huge backlog in JIRA of CVEs we had to remediate. Resolving a CVE takes time away from actual work, as we had to wait for the CVE to be resolved, push the fixes, verify the fixes were passing security scans, then finally backport fixes to old releases we maintained. It all took a long time, was a major effort, and didn't scale well as we had more CVEs than I want to admit :D. Migrating from our team's existing images to chainguard only took about a day, and now using chainguard images totally saves us from having to deal with these CVEs, and lets us work on actual business problems, and not have to try to figure out how to patch some obscure lib install. **What do you dislike about Chainguard?** Sometimes, it's tough to troubleshoot live issues where you need to do kubectl exec into a pod. This is a somewhat rare edge case, but it's something we've run into. It's also sometimes hard to get certain packages fully working (eg a python pandas packages needs a driver which may not be present in the base image). **What problems is Chainguard solving and how is that benefiting you?** Resolving CVEs and keeping images secure so that I don't have to. **Official Response from Sarah Haberman:** > Hey Ben 👋 Thanks for the great review! Glad to hear you're having a great experience with Chainguard! ### 10. Strong Security and a Great Experience So Far **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Accounting | Small-Business (50 or fewer emp.) **Reviewed Date:** March 17, 2026 **What do you like best about Chainguard?** Chainguard is getting a lot of attention because it solves a very real (and growing) problem: software supply chain security—basically making sure the code and containers you run aren’t quietly compromised. **What do you dislike about Chainguard?** Nothing yet it can be expensive. Learn g curve **What problems is Chainguard solving and how is that benefiting you?** Chainguard is getting a lot of attention because it solves a very real (and growing) problem: software supply chain security—basically making sure the code and containers you run aren’t quietly compromised. ### 11. Great Catalog of FIPS-Compliant Images with Easy Base Image Customization **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Security and Investigations | Mid-Market (51-1000 emp.) **Reviewed Date:** January 21, 2026 **What do you like best about Chainguard?** There is a good catalog of fips compliant images, and they support customization by adding packages directly to a base image. **What do you dislike about Chainguard?** Some image were missing which complicated the process of migrating all our services. **What problems is Chainguard solving and how is that benefiting you?** It is helping us achieve fedramp high which expands our client base. ### 12. Easy-to-Use, Secure Container Images **Rating:** 4.0/5.0 stars **Reviewed by:** Angel B. | Customer Support Supervisor, Small-Business (50 or fewer emp.) **Reviewed Date:** November 06, 2025 **What do you like best about Chainguard?** The container images are easy to use and provide a secure environment. **What do you dislike about Chainguard?** The integration process is not straightforward, and the cost can be high for individual users. **What problems is Chainguard solving and how is that benefiting you?** Vulnerability scanner which helps me detect complex issues easily. ### 13. Seamless CI/CD Integration and Transparent SBOMs with Chainguard Libraries **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Small-Business (50 or fewer emp.) **Reviewed Date:** March 17, 2026 **What do you like best about Chainguard?** The seamless integration with our existing CI/CD pipeline, along with Chainguard’s transparency through SBOM and the overall Chainguard Libraries experience. **What do you dislike about Chainguard?** I antipate Chainguard's capability to audit which JS Libraries appear from Chainguard vs NPM even after they're drawn through JFrog/Arctifactory. **What problems is Chainguard solving and how is that benefiting you?** Transparency and risk mitigation. ### 14. Secure, Minimal, and Well-Supported — A Great Experience with Room for Transparency Improvements **Rating:** 5.0/5.0 stars **Reviewed by:** Chandra G. | Senior Release/DevOps Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** May 19, 2025 **What do you like best about Chainguard?** Chainguard Images have been a transformative addition to our software supply chain strategy. The minimal, hardened, and continuously verified container images significantly reduce our attack surface while ensuring compliance and operational reliability. One of the biggest pain points in container security is managing outdated or bloated base images filled with vulnerabilities. Chainguard solves this brilliantly with distroless, signed images that are continuously updated and come with built-in provenance and SBOMs. It’s clear they’ve thought deeply about what modern development teams need to build secure-by-default applications. What really sets Chainguard apart, though, is their exceptional support. From day one, their team has been proactive, responsive, and genuinely invested in our success. Whether it was help with integration, optimizing our image choices, or answering security policy questions, their support engineers went above and beyond. Their documentation is also thorough and developer-friendly, which makes onboarding smooth and intuitive. In summary: Chainguard Images bring peace of mind to any DevSecOps team, and their world-class support makes them a true partner in software supply chain security. Highly recommended for anyone building or deploying containers in a production environment **What do you dislike about Chainguard?** One area that could use improvement is transparency around source code and SBOM (Software Bill of Materials) access. While the images are secure and well-maintained, having easier access to corresponding source repositories and complete SBOMs—preferably in an automated or standardized format—would help us meet internal audit and compliance requirements more seamlessly. **What problems is Chainguard solving and how is that benefiting you?** The built-in signing, provenance, and emphasis on secure defaults have given our team increased confidence in what we’re deploying. Integration was straightforward, and the developer experience has been smooth from the start. **Official Response from Sarah Haberman:** > Chandra, thanks for taking the time to write such a thorough review! 🙌 ### 15. The gold star vendor: sales, onboarding implementation, support, and product **Rating:** 5.0/5.0 stars **Reviewed by:** Charlie G. | SRE Manager, Mid-Market (51-1000 emp.) **Reviewed Date:** July 24, 2025 **What do you like best about Chainguard?** The chainguard team was able to meet us where we were at, move extremely quickly to meet our deadlines, and everything _just worked_. **What do you dislike about Chainguard?** Wiz sometimes detects false positives in cgr images. **What problems is Chainguard solving and how is that benefiting you?** Passing audits, and getting our vuln counts to zero. **Official Response from Sarah Haberman:** > Charlie, what a great review! We'll take that gold star - thank you! ⭐️ ### 16. We used chainguard base images to **Rating:** 5.0/5.0 stars **Reviewed by:** Ken A. | Principal Application Architect, Human Resources, Enterprise (> 1000 emp.) **Reviewed Date:** November 18, 2024 **What do you like best about Chainguard?** Using chainguard essentially eliminates container library vulnerabilities coming from our Docker base images (as well as standard package installs!). When we scan our chainguard based images with grype, or snyk, the only vulnerabilities left are from our application installs. We are in the process of implementing chainguard base images across the enterprise, and are expecting over 80% reduction in open vulnerabilities across the board. Chainguard's customer support is excellent, they are one of the best software vendors I have ever worked with. **What do you dislike about Chainguard?** The only real downside is you have to modify your Dockerfiles to work with the Wolfi OS, which is alpine-like (i.e. you have to use apk, etc.) If your current base image is not alpine based, there is some learning curve and work. **What problems is Chainguard solving and how is that benefiting you?** We have a significant backlog of known container vulnerabilities in our containers. Hardening and managing clean base images is a lot of work and takes specialized expertise that our development teams don't have. Changuard provides base images that work out of the box for most of our tech stacks and alleviates the need to manage hardened base images ourselves. **Official Response from Kirby Koo:** > Thank you, Ken! ### 17. Chainguard has changed the game when it comes to remediating vulns in images. **Rating:** 5.0/5.0 stars **Reviewed by:** Dan E. | Senior Cybersecurity Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** August 11, 2024 **What do you like best about Chainguard?** I love the ease of use for our dev teams to switch over and cut their vulnerabilities down. Integrating it into our pipelines has been very easy. Customer support has been excellent and responsive. **What do you dislike about Chainguard?** At this time of using the product I do not have any dislikes **What problems is Chainguard solving and how is that benefiting you?** Teams have been struggling to bring their vulnerabilities down on their images. This takes so much off their plates and not having to worry about it. **Official Response from Kirby Koo:** > Aww, thanks for taking the time to review us! Your support means a lot :) ### 18. Great FIPS compliant images **Rating:** 5.0/5.0 stars **Reviewed by:** VISHNU V. | DevOps Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** May 15, 2025 **What do you like best about Chainguard?** Zero CVE images which we can directly consume in our products **What do you dislike about Chainguard?** Nothing as of now which we have encountered **What problems is Chainguard solving and how is that benefiting you?** We can directly get the FIPS certified images and use them in our products which we ship to federal customers by using the images from chainguard as base images **Official Response from Sarah Haberman:** > Thanks for the great review, Vishnu! So happy to hear that our FIPS containers are helping you ship to federal customers! 🚀 ### 19. Fantastic Product and an Even Better Team! **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Enterprise (> 1000 emp.) **Reviewed Date:** May 23, 2025 **What do you like best about Chainguard?** From scoping to project completion the Chainguard team was amazing to work with and provided excellent customer support! The ease of use, implementation and integration also helped! Looking forward for new features being released! **What do you dislike about Chainguard?** I have found no issue while working with the product so far! **What problems is Chainguard solving and how is that benefiting you?** Chainguard is helping us reduce vulnerabilities by shifting left and reducing engineering time that it takes to patch vulnerabilities, saving us time and money! **Official Response from Sarah Haberman:** > Thanks for the kind words! We’re so glad you’ve had a great experience with our team 🙌 ### 20. Game-Changer **Rating:** 5.0/5.0 stars **Reviewed by:** Karl H. | Senior Principal Architect, Enterprise (> 1000 emp.) **Reviewed Date:** August 28, 2024 **What do you like best about Chainguard?** Since implementing Chainguard's hardened base images, we've seen a dramatic reduction in vulnerabilities—over 70%. This reduction not only enhances our security posture but also saves our engineering teams an enormous amount of time that would otherwise be spent on vulnerability management and patching. Chainguard's approach introduces excellent security practices out of the box, meaning our engineers no longer have to worry about critical security concerns like rootless containers, proper permissions, and secure registries. Chainguard sets itself apart by providing supply chain security through purpose-built packages in their registry, making it clear that while competitors might still be playing catch-up in the minor leagues, Chainguard is clearly in a league of its own, setting the standard for supply chain security. We've maximized the value of these images by ensuring reuse across our organization, categorizing images into language-based and application-based groups. This strategy allows us to gain the most value through frequent reuse of language-based images, while our centralized platform engineering teams benefit from using application-specific images at a different scale. To drive adoption, we've integrated Chainguard images into our centralized internal developer portal, which our developers are already familiar with and use regularly. This seamless integration has significantly boosted adoption rates, further supported by our vulnerability management reduction program. Through this program, we've been able to recommend Chainguard images, reassuring teams that transitioning will save time and energy. The service level agreements (SLAs) provided by Chainguard are also very attractive. The high speed of image updates ensures that we are always protected with the latest security enhancements. We've even integrated Chainguard into our automatic update tools, so our developers are always confident that they're working with the most up-to-date versions. Overall, Chainguard's hardened base images have been a game-changer for our organization, providing unparalleled security, efficiency, and peace of mind. **What do you dislike about Chainguard?** The documentation at times fall a little behind and the modern authentication mechanisms at times can create difficulties in integrating with other existing platforms that are not yet supportive of technologies like OIDC. Quite a few of the images require rework to convert from a standard Dockerhub image however, I believe that's expected. **What problems is Chainguard solving and how is that benefiting you?** Reducing container, image, vulnerabilities and creating a solid secure base to build upon **Official Response from Kirby Koo:** > Thank you, Karl!! Your support means the world to us :) ### 21. Chainguard is very easy to use and deploy **Rating:** 4.5/5.0 stars **Reviewed by:** Drew W. | Senior Principal Software Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** November 18, 2024 **What do you like best about Chainguard?** I was extremely happy with how trivial it was to swap in their FIPS images in place of the FOSS images we were using. They had a whole onboarding call, but we'd already deployed them to development as it was that fast and easy. **What do you dislike about Chainguard?** Their pricing was a battle, they don't differentiate between very simple images and very complex ones, so making the case to use them fully is very difficult. I think a pricing model that more accurately reflects their value add would help, as some images are inherently more complex to replace than others. **What problems is Chainguard solving and how is that benefiting you?** They have FIPS support and vulnerability management via SCA. **Official Response from Kirby Koo:** > Thank you for the support, Drew! ### 22. Quick and Easy Migration **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Internet | Enterprise (> 1000 emp.) **Reviewed Date:** April 29, 2025 **What do you like best about Chainguard?** Migrating to using Docker images from Chainguard was a pretty seamless experience and it results in better software supply chain security. I also received a lot of quick help from the Chainguard team when I was coming across a problem in my Dockerfile script! **What do you dislike about Chainguard?** It might look very overwhelming to migrate at first glance. It might help to emphasize that it's quick and fairly painless. **What problems is Chainguard solving and how is that benefiting you?** A lot of our services use Dockerfiles and it seems that many of them had hundreds of vulnerabilities. Using Chainguard ensures stronger software supply chain practices. **Official Response from Sarah Haberman:** > Thanks so much for the thoughtful review! We're thrilled Chainguard is helping you reduce vulnerabilities and strengthen your software supply chain 😎 ### 23. I am surprised this is a business. **Rating:** 2.5/5.0 stars **Reviewed by:** Verified User in Information Services | Enterprise (> 1000 emp.) **Reviewed Date:** May 01, 2025 **What do you like best about Chainguard?** Sometimes the images are drop in compatible. **What do you dislike about Chainguard?** Many images have arbitrarily changed the entrypoint + command args, and require changes on every use. **What problems is Chainguard solving and how is that benefiting you?** None. We have no automation to keep the images up to date, thus CVEs in older images are present in our products. **Official Response from Sarah Haberman:** > Thank you for taking the time to share your feedback. We’re genuinely sorry to hear that your experience hasn’t met expectations. We aim to provide secure container images that are easy to implement, and we understand how critical compatibility is. While we strive for drop-in compatibility whenever possible, some of our container images do diverge from traditional images, typically for documented security reasons. For example, removing the shell is a deliberate design choice to reduce attack surface and strengthen supply chain security — We understand these choices can require changes to how entry points and commands are handled in your environment, but we believe this approach is necessary to make our container images secure-by-default. If you’re open to sharing more information with your Technical Success Manager about how we can best support you, we'd greatly appreciate the continued feedback. ### 24. Great product, great customer service **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Insurance | Mid-Market (51-1000 emp.) **Reviewed Date:** July 24, 2025 **What do you like best about Chainguard?** A wealth of images and packages at the highest standard of security. **What do you dislike about Chainguard?** It’s kinda pricey for a startup, but, ultimately, worth it **What problems is Chainguard solving and how is that benefiting you?** Building rocket images on top of very secure base images, using secured packages. **Official Response from Sarah Haberman:** > Thanks so much for your review! ### 25. Tech is great, and the team is excellent. **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Defense & Space | Enterprise (> 1000 emp.) **Reviewed Date:** November 18, 2024 **What do you like best about Chainguard?** Chainguard has allowed us to develop at speed and scale allowing us to focus on features more than the development overhead, especially in mitigating CVEs. That said, the team that we interact with is the best part of Chainguard. Responsive, intelligent, and customer obsessed is the main reason we value and continue our relationship. Couldn't be happier. **What do you dislike about Chainguard?** There isn't anything we don't like that I can think of. **What problems is Chainguard solving and how is that benefiting you?** Chainguard helps our engineers focus on developing features. Previously, most time was spent trying to mitigate CVEs and our customers were getting new features deployed. Using Chainguard has significantly shifted that paradigm. Developing in the DoD landscape is harder than the private sector and this helps a lot. **Official Response from Kirby Koo:** > Wow! The feeling is mutual :) Thank you! ### 26. Simplifying security **Rating:** 5.0/5.0 stars **Reviewed by:** Leonardo Z. | Senior Software Architect, Enterprise (> 1000 emp.) **Reviewed Date:** November 07, 2024 **What do you like best about Chainguard?** Security is hard on its own, and while many vendors focus on selling detection products, Chainguard does the opposite and solve a painful problem with little effort from users. **What do you dislike about Chainguard?** Chainguard offers some free to use images, but only "latest" version and not stable versions. This makes impossible to use as an individual or for open source projects. **What problems is Chainguard solving and how is that benefiting you?** Zero security vulnerability containers. **Official Response from Kirby Koo:** > Thank you, Leo! We appreciate you! ### 27. Looking for the best distroless images on the market? Chainguard is the way to go! **Rating:** 5.0/5.0 stars **Reviewed by:** Michael W. | Cyber Security Consultant (AppSec Area), Enterprise (> 1000 emp.) **Reviewed Date:** July 24, 2024 **What do you like best about Chainguard?** I wrote a paper on container image security, evaluating the security of containers through reduction of potentially vulnerable components. It concludes that the usage of component reduction methods significantly reduces the amount of security vulnerabilities within container images. It also finds that, even though the probability of exploitation of the majority of vulnerabilities found by scanners is very low, employing them still is a strategically sound decision. When comparing different images with component reduced (i.e. "distroless images") alternatives, chainguard did by far the best job. As a consultant supporting product security teams in large enterprises we are recommending to integrate chainguard images to development teams and decision makers. It will save a lot of dicsussions, headaches and money! Please find the paper here: https://mwager.de/assets/component_reduction_paper.pdf **What do you dislike about Chainguard?** Nothing so far. Have a look at the paper, it clearly shows that Chainguard did the best job compared to all other alternatives. **What problems is Chainguard solving and how is that benefiting you?** Chainguard provides container images containing zero CVEs (security vulnerabilities within the supply chain) for a lot of relevant runtimes and popular services, is easy to use and integrate and also provides excellent documentation. **Official Response from Kirby Koo:** > Thank you for sharing your research paper & review, Michael! We appreciate it! ### 28. Good range of base images, great support **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Banking | Enterprise (> 1000 emp.) **Reviewed Date:** December 02, 2024 **What do you like best about Chainguard?** Since adopting Chainguard the number of vulnerabilities our scanning tools have found in our services has dramaticdally decreased. Chainguard also offers a good range of base images and has been able to build custom app images for us. **What do you dislike about Chainguard?** Initial learning curve on how to migrate from standard base images to Chainguard images. We have had issues integrating Chainguard's Docker registry with out artifact storage tool. **What problems is Chainguard solving and how is that benefiting you?** Automating the patching of our base images, so our team doesn't need to worry about it. **Official Response from Kirby Koo:** > Thank you for the review! ### 29. Chainguard makes securing applications much easier **Rating:** 4.5/5.0 stars **Reviewed by:** Brad M. | Senior DevOps Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** September 05, 2024 **What do you like best about Chainguard?** It's simplicity. Changing from a regular Image to use a Chainguard image as the base helps mitigate a lot of vulnerabilities, and it's a change any developer would be able to easily implement. This is something that I would recommand to any developer or business that is looking to harden their applications. Securing the base image is the first step everyone should take. **What do you dislike about Chainguard?** I have some uncertaincies about what the support will look like for users using the Developer Free tier in the future. Would like them to sllow all image versions and not just latest/stable for Free Tier. **What problems is Chainguard solving and how is that benefiting you?** Bring simplicity to security. It hardens the application image that our containers use to run. **Official Response from Kirby Koo:** > Thank you, Brad! ### 30. Time-Saving, Secure Containers Solutions! **Rating:** 4.5/5.0 stars **Reviewed by:** Matheus G. | Software Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** August 23, 2024 **What do you like best about Chainguard?** Chainguard allows developers to save a lot of time and effort by providing ready-to-use container images that are secure. In addition, the images provided are very lightweight. **What do you dislike about Chainguard?** The custom linux distribution may be harder to work with, but wolfi-base is still quite similar to Alpine and hence not too complex. **What problems is Chainguard solving and how is that benefiting you?** They provide off the shelf image solutions to secure you deployment/release containers. In other words, Chainguard allows you to secure the environment in which you deploy your applications to. ### 31. Extremely satisfy with Chainguard support **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Hospital & Health Care | Enterprise (> 1000 emp.) **Reviewed Date:** November 22, 2024 **What do you like best about Chainguard?** Chainguard support is excellent and fast. Chainguard images are lean, secure and easy to integrate. Updates are frequent and easy to implement. Users can pull any supported imgages with up-to-date features for frequency of use. **What do you dislike about Chainguard?** Base chainguard images include minimum standard security configurations. Distroless prodution images without shell cause some inconvenience for testing, debugging purposes. Users need to learn different way to search and add packages. **What problems is Chainguard solving and how is that benefiting you?** Using Chainguard container images help minimizing security vulnerabities and attack surfaces. **Official Response from Kirby Koo:** > Love to hear it! Thank you! ### 32. Easy and positive experience **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Mid-Market (51-1000 emp.) **Reviewed Date:** November 20, 2024 **What do you like best about Chainguard?** Attentive support team Well documented service Easy to use portal/UI Flexible to customizations we requested **What do you dislike about Chainguard?** None I can think of. The limiting factor for chainguard is the upstream product maintenaners speed. **What problems is Chainguard solving and how is that benefiting you?** We use chainguard images to reduce vulnerabilities and to support FIPS compliance. They provide updates to OS packages and product dependencies which takes a singificant effort for product development teams. FIPS compliance also important for ua to deliver our products to federal government customers/prospects. Chainguard makes it easy for us to maintain FIPS compliance by providing us base FIPS images and 3rd party FIPS images. We don't have to do the research and maintenance on our side. **Official Response from Kirby Koo:** > We appreciate the support. Thank you so much! ### 33. Secure software supply chain **Rating:** 5.0/5.0 stars **Reviewed by:** Andy T. | Mid-Market (51-1000 emp.) **Reviewed Date:** April 09, 2024 **What do you like best about Chainguard?** Chainguard has a rock solid product offering that's allowed our teams to build on top of a secure foundation. Chainguard's Linux (un)distro and vast library of language runtimes and open source building blocks allowed us to compose a secure software catalog of first and third party software to distribute to our customers. On top of this, all of Chainguard's engineering and customer success staff have been a great pleasure to work with! All our collab is over Slack and they feel like an extended part of the team. **What do you dislike about Chainguard?** This falls more to us than Chainguard, but ways to better track all the places we're making use of their base images would be helpful. **What problems is Chainguard solving and how is that benefiting you?** Chainguard helps our engineering teams secure our software supply chain and build on top of "sanitized" open source. ### 34. Spend less time talking about CVEs **Rating:** 5.0/5.0 stars **Reviewed by:** Mark M. | Organizer, Enterprise (> 1000 emp.) **Reviewed Date:** April 02, 2024 **What do you like best about Chainguard?** We've all seen a ton of projects that will detect CVEs but then you have the secondary problem of deciding where the CVE originated from (base image or first party code), how to patch or upgrade, when to patch so not to impact customers, who should own the updates, what to tell customers and compliance... Chainguard Images removes the CVEs -- no debate, no CVSS, no triaging, no work tickets. It's done. Enterprises that appreciate this problem will see an ROI in weeks if not days. Not to mention that enterprise customers get an SLA for patches -- I challenge anyone to do what they are doing internally without spending millions on a team who does this as a full time job. Then for the orgs that are investing in the software supply chain risks, they provide provenance, signing, and an accurate SBOM out-of-The box to start your journey in managing a secure software supply chain. **What do you dislike about Chainguard?** The free offering is (reasonably) only the :latest tag which might be fine for personal projects but not most production environments. I don't know the costs for individuals or small orgs (I'm an enterprise customer) but its not free. **What problems is Chainguard solving and how is that benefiting you?** This solves a major piece of our compliance story. We need to demonstrate to compliance that we are properly managing CVEs that are impacting our customers. It's also planned to rolled out everywhere in our org as part of a Gold Image project. ### 35. Software supply chain starts at the container level! **Rating:** 5.0/5.0 stars **Reviewed by:** Nuno D. | Senior IT System Analyst, Enterprise (> 1000 emp.) **Reviewed Date:** December 19, 2023 **What do you like best about Chainguard?** Since its inception, Chainguard has been modernizing the software supply chain ecosystem and one of their most critical work, and often thought for granted, is their containers image repository. In a perfect world, every end-user company, would create container images that are signed (ever heard about Sigstore? Chainguard created it), have a software bill of materials (SBOMs) and are scanned (0 CVEs) before being used in production. Well, we don't live in such world and Chainguard, instead of playing the role of "use our base images at your own risk", they moved towards the hardest direction and provide us with updated, signed and scanned base images at their own costs! Want to have the latest node.js image with 0 CVEs? docker/podman/nerdctl pull cgr.dev/chainguard/node. That's that easy. Nothing to implement, change the source repository and you're good to go. Of course, for production you should never run the latest image and instead target a specific version. This is where their customer support comes into play by helping you customizing the usage of their images to your needs. Chainguard took ownership of what I call a "grey area", where providers and customers tend to finger point when something goes wrong. And by doing so, with their team of experts, I can confidently say the container ecosystem feels a little bit more secure, and this means a lot. **What do you dislike about Chainguard?** Maybe the only downside I can see about Chainguard efforts, is to know if keeping all these 0 CVEs images on the long term will not impact other sections/innovations due to this very demanding workload. The company seems to grow at a good pace (not too fast or slow), however the security is a daily fight and the ressources can be limited. I fully trust their solutions, and believe they automated the most of their tasks. Still, it's a lot of efforts for "only one side" of Chainguard's offering. **What problems is Chainguard solving and how is that benefiting you?** Software supply chain security by providing sane container images. By giving us a "secure start", we can focus on the software development and continue the secure supply chain up to production. ### 36. Mix of feelings **Rating:** 3.5/5.0 stars **Reviewed by:** Verified User in Computer Software | Mid-Market (51-1000 emp.) **Reviewed Date:** December 05, 2024 **What do you like best about Chainguard?** 0 CVE's, Good support, Very good technical team **What do you dislike about Chainguard?** Sometimes we need remind them to update some images **What problems is Chainguard solving and how is that benefiting you?** Boost for FedRamp **Official Response from Sarah Haberman:** > Hey there! Thanks for your review and feedback. It's great to hear that Chainguard is helping with your FedRAMP journey! ### 37. My experiences using Chainguard Nodejs base image was amazing! **Rating:** 4.5/5.0 stars **Reviewed by:** Emmanuel F. | Software developer, Small-Business (50 or fewer emp.) **Reviewed Date:** September 12, 2024 **What do you like best about Chainguard?** - Very small image size, - Very small to none CVEs from my experiences. - Very large repo supporting many languages and technologies, - Ease to use, - Ease of implementation. **What do you dislike about Chainguard?** A great part of it, is free, but for some custom implementation or features , you may pay. **What problems is Chainguard solving and how is that benefiting you?** CVEs, better quality software. ### 38. Amazing drop-in SECURE replacement for your images! **Rating:** 5.0/5.0 stars **Reviewed by:** Benjamin Y. | Freelance Developer, Small-Business (50 or fewer emp.) **Reviewed Date:** December 13, 2023 **What do you like best about Chainguard?** Chainguard makes it easy to pull and use actually secure images. If you're using images from another registry, in most cases you can just drop in the chainguard images in place. Not only do you get the elimination of CVEs and massive risk, you get an INSANE reduction in size! It's an amazing resource that is somehow available for open use, and comes with a cadre of passionate and attentive people to support. As the registry grows, I can see this becoming my only source of trusted images for platform deployments. **What do you dislike about Chainguard?** It's hard to find something to dislike, but perhaps the requirement of authentication to pull images, and also that it's not THE mandatory registry for everyone. **What problems is Chainguard solving and how is that benefiting you?** They are providing security-forward images for platform deployment that not only reduce CVEs to zero, but reduce bloat to as little as possible. The difference it makes for me is often in the gigabytes. ### 39. Secure and Efficient Toolbox for Containers **Rating:** 5.0/5.0 stars **Reviewed by:** Raphael D. | IT Consultant, Small-Business (50 or fewer emp.) **Reviewed Date:** December 19, 2023 **What do you like best about Chainguard?** As a professional deeply engaged in Kubernetes projects, I have found Chainguard's Images and Digestabot to be essential tools in elevating the security and efficiency of my daily tasks. One remarkable feature, from my perspective, is the robust nature of Chainguard's images. Integrating these images with multi-stage builds has enabled me to significantly reduce container sizes, all while guaranteeing the final image's resilience against vulnerabilities. Furthermore, the seamless integration with Digestabot has revolutionized the way I manage containerized applications, making it a pivotal asset in my work. Digestabot ensures the automatic and up-to-date maintenance of my images, alleviating the need for constant monitoring and manual updates for each component. This automated process has proven to be a valuable time-saving and stress-free element in my professional workflow. **What do you dislike about Chainguard?** I have not encountered any dislikes with Chainguard thus far, even utilizing it with frequency. It has been easy to implement, and whenever I needed support, the responses were prompt and helpful. **What problems is Chainguard solving and how is that benefiting you?** By leveraging Chainguard's images, I've been able to mitigate the risks associated with potential vulnerabilities, ensuring a more secure deployment in Kubernetes clusters. Additionally, Chainguard's integration with Digestabot has been instrumental in solving the problem of maintaining up-to-date containers. Digestabot automates the update process, saving me valuable time and effort that would otherwise be spent manually monitoring and updating each component. ### 40. Secure-by-Design Exemplified **Rating:** 5.0/5.0 stars **Reviewed by:** Chris H. | Mid-Market (51-1000 emp.) **Reviewed Date:** April 26, 2024 **What do you like best about Chainguard?** There's a lot of talk about Secure-by-Design software in the industry. That said, Chainguard moves beyond the talk and walks the walk with their Chainguard images and innovative approaches to software supply chain security. Rather than just focusing on identifying and reporting on vulnerabilities, Chainguard gets to the root of the issue, driving down vulnerabilities exponentially and enabling Developers to build on a secure foundation, eliminating toil, reducing attack surface and benefiting the entire software ecosystem. **What do you dislike about Chainguard?** There's not much to dislike about Chainguard other than the industry needed them sooner. **What problems is Chainguard solving and how is that benefiting you?** Eliminating hundreds and thousands of known vulnerabilities and enabling Secure-by-Design cloud-native application workloads. ### 41. Great base images **Rating:** 5.0/5.0 stars **Reviewed by:** Jorge C. | Developer Relations, Small-Business (50 or fewer emp.) **Reviewed Date:** January 23, 2024 **What do you like best about Chainguard?** There's not much to say, and I mean that in a good way. Their base images are small, and almost always have a significant amount of less surface area and vulnerabilities than containers based on traditional distributions. I like that the build process is on github so you can open up their merge queue and watch the updates go in in real time. It's also great that they can be as small as Alpine images but with glibc so you don't have to worry about dealing with musl. **What do you dislike about Chainguard?** I don't have experience with their commercial support. **What problems is Chainguard solving and how is that benefiting you?** Smaller base images - a drop in replacement for Alpine/Ubuntu. ### 42. Excellent solution to a significant security problem **Rating:** 5.0/5.0 stars **Reviewed by:** David C. | Small-Business (50 or fewer emp.) **Reviewed Date:** May 15, 2024 **What do you like best about Chainguard?** Knowing what's actually running in the container images you're using in your infrastructure has always been a security weakness of the container ecosystem. Chainguard makes it relatively simple to verify that your imagines are clean of significant vulnerabilities. **What do you dislike about Chainguard?** The system is as good as practically possible but, at the end of the day, you're still relying on outsiders for your security. **What problems is Chainguard solving and how is that benefiting you?** Chainguard makes it possible to ensure the container images you use are clean of vulnerabilities. ### 43. Minimal and easy to use **Rating:** 5.0/5.0 stars **Reviewed by:** Frederic B. | CEO/Founder, Small-Business (50 or fewer emp.) **Reviewed Date:** June 18, 2024 **What do you like best about Chainguard?** Our workloads are entirely statically linked binaries so we were looking for a minimal base image and Chainguard's static image perfectly fits the bill. **What do you dislike about Chainguard?** We don't use other chainguard images since we'd only have access to the latest image, and our infrastructure relies heavily on reproducibility which we can't guarantee with floating tags. **What problems is Chainguard solving and how is that benefiting you?** Never having to worry about CVEs in our main application container images. ### 44. Chainguard’s container images, towards effortless and strong security posture **Rating:** 5.0/5.0 stars **Reviewed by:** Mathieu B. | Senior Customer Success Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** January 23, 2024 **What do you like best about Chainguard?** I was looking for replacing my base images with more a secure approach (i.e. distroless), Chainguard images were a great fit because easy to use and well maintained. The other aspect is the customer support that the Chainguard team is providing, even with the free container images. As an example, they took my feedback, answered my questions as well as educated around the different concepts. **What do you dislike about Chainguard?** Not yet widely used out there, but it's coming as more awareness and education are provided and shared. I haven't built my own container image with wolfi, melange and apko yet, as I will to spend more time to get started with them. **What problems is Chainguard solving and how is that benefiting you?** Chainguard is helping by default and effortless to improve my security posture with my container images. ### 45. The future of container development **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Defense & Space | Enterprise (> 1000 emp.) **Reviewed Date:** April 12, 2024 **What do you like best about Chainguard?** Chainguard's open source tooling allows developers, and opportunity to package their projects in secure, efficient containers. When working on my personal projects, I now default to using melange and apko for all of my containers. **What do you dislike about Chainguard?** Sometimes documentation is lacking for advanced features or portions of their open source tooling. **What problems is Chainguard solving and how is that benefiting you?** Chainguard has released their alternative values for Big Bang, addressing over 2000 CVEs and massively reducing the footprint of the image deployment bundle. ### 46. Small, up-to-date and secure base images **Rating:** 5.0/5.0 stars **Reviewed by:** Vincent B. | dev, Computer Games, Enterprise (> 1000 emp.) **Reviewed Date:** December 20, 2023 **What do you like best about Chainguard?** We've replaced our usage of alpine as a base image with the "wolfi-base" image, it's almost the same experience - using apk to install packages for example - but with an always up-to-date distribution and no CVEs. The investment is minimal, but the value is huge for us, as we don't have to manage old alpine releases anymore. **What do you dislike about Chainguard?** Not all the chainguard images are drop-in replacements for "official" images you might be using today. Some require a bit of work to integrate properly in your setup. **What problems is Chainguard solving and how is that benefiting you?** easy to use and secure-by-default base images. In case of newly detected vulnerability, we can always count on chainguard to be the first to provide patched images. ### 47. Best in the business **Rating:** 5.0/5.0 stars **Reviewed by:** Tyler S. | Mid-Market (51-1000 emp.) **Reviewed Date:** April 03, 2024 **What do you like best about Chainguard?** Removes the complexity from dealing with CVEs from the development process, allowing teams to ship high quality software without compromising security or speed. **What do you dislike about Chainguard?** Nothing - they are my go-to recommendation when teams are struggling in the process. **What problems is Chainguard solving and how is that benefiting you?** Chainguard buys down time and complexity in the container security and CVE process, allowing software to rapidly achieve security requirements and deploy into secure environments ### 48. Critical for SBOM and supply chain security **Rating:** 5.0/5.0 stars **Reviewed by:** David A. | Small-Business (50 or fewer emp.) **Reviewed Date:** December 22, 2023 **What do you like best about Chainguard?** Chainguard does the hard work of building secure containers, and ensuring that things are kept up to date. They are experts in the field and provide both a balanced approach with best in class security. **What do you dislike about Chainguard?** Containers are often challenging to adopt, and with many common tools not present (because they have security vulnerabilities), existing tools may not work inside of Chainguard images. That's not Chainguard's fault, it just is an adaptation the entire ecosystem needs to make to get secure. **What problems is Chainguard solving and how is that benefiting you?** Ensuring that the containers we use for our applications are secure, minimal, and well structured. ### 49. Provenance Data! **Rating:** 5.0/5.0 stars **Reviewed by:** Cole K. | Small-Business (50 or fewer emp.) **Reviewed Date:** December 21, 2023 **What do you like best about Chainguard?** Their images come with great attestation data that alows us to indepedently verify provnance. **What do you dislike about Chainguard?** Not enough places are using it yet. It would be great of more OSS used it so vuln would be reduced for the OSS we consume. **What problems is Chainguard solving and how is that benefiting you?** It lowers the number of vulnrubiities. ### 50. Chainguard Images are amazing if you are struggling managing CVE **Rating:** 5.0/5.0 stars **Reviewed by:** Tuan Anh T. | Head of Technology Platform, Banking, Enterprise (> 1000 emp.) **Reviewed Date:** December 20, 2023 **What do you like best about Chainguard?** Chainguard images are very easy to use. Most of the time they are drop-in replacements. Just a few line changes and most (if not all) the CVE are gone. The impact is super high with minimal effort from user. **What do you dislike about Chainguard?** Building custom packages if easier (melange+apko), can help attracting more users. **What problems is Chainguard solving and how is that benefiting you?** We struggled with managing vulnerabilities in base images. Chainguard images free us from that and focus on app development - [View Chainguard pricing details and edition comparison](https://www.g2.com/products/chainguard/reviews?section=pricing&secure%5Bexpires_at%5D=2026-05-14+10%3A26%3A08+-0500&secure%5Bsession_id%5D=389a60cb-af69-443a-9f53-40869617eda2&secure%5Btoken%5D=c7bfce05195bdc698120da85a69cfd62201a7da72e3f8cb37f7143cdab179af2&format=llm_user) ## Chainguard Integrations - [Amazon Inspector](https://www.g2.com/products/amazon-inspector/reviews) - [Aqua Security](https://www.g2.com/products/aqua-security/reviews) - [CrowdStrike Falcon Cloud Security](https://www.g2.com/products/crowdstrike-falcon-cloud-security/reviews) - [Datadog](https://www.g2.com/products/datadog/reviews) - [DataRobot](https://www.g2.com/products/datarobot/reviews) - [GitHub](https://www.g2.com/products/github/reviews) - [GitHub Inc.](https://www.g2.com/products/github-inc/reviews) - [GitLab](https://www.g2.com/products/gitlab/reviews) - [Google Artifact Registry](https://www.g2.com/products/google-artifact-registry/reviews) - [Google Cloud](https://www.g2.com/products/google-cloud/reviews) - [Jenkins](https://www.g2.com/products/jenkins/reviews) - [JFrog](https://www.g2.com/products/jfrog-2024-03-28/reviews) - [Keeper Secrets Manager](https://www.g2.com/products/keeper-secrets-manager/reviews) - [Okta](https://www.g2.com/products/okta/reviews) - [Qualys WAS](https://www.g2.com/products/qualys-was/reviews) - [Snyk](https://www.g2.com/products/snyk/reviews) - [Sysdig Secure](https://www.g2.com/products/sysdig-sysdig-secure/reviews) - [VulnCheck Exploit and Vulnerability Intelligence](https://www.g2.com/products/vulncheck-exploit-and-vulnerability-intelligence/reviews) - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) ## Chainguard Features **Administration** - Risk Scoring - Secrets Management - Security Auditing - Configuration Management **Monitoring** - Continuous Image Assurance - Behavior Monitoring - Observability **Protection** - Dynamic Image Scanning - Runtime Protection - Workload Protection - Network Segmentation ## Top Chainguard Alternatives - [Snyk](https://www.g2.com/products/snyk/reviews) - 4.5/5.0 (132 reviews) - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) - 4.7/5.0 (773 reviews) - [FortiCNAPP](https://www.g2.com/products/forticnapp/reviews) - 4.4/5.0 (383 reviews)