https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/tags/chainguard-containers/Recent content in Chainguard Containers onHugo -- gohugo.ioen-USTue, 31 Mar 2026 00:00:00 +0000https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/chainguard-images/features/packages/package-model/Thu, 09 Oct 2025 00:00:00 +0000https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/chainguard-images/features/packages/package-model/Chainguard Containers are built using packages from the Wolfi and Chainguard OS Linux distributions. If you need to extend or customize an image, it can be useful to access these packages directly. Chainguard offers curated package repositories to support containerized workloads and simplify dependency management. These repositories ensure you can access trusted packages — whether building custom container images, working with Chainguard OS, or using Chainguard Containers in production. This article provides an overview of Chainguard’s package model, highlighting the different Chainguard package repositories available to customers.https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/chainguard-images/tooling/building-java-containers-with-jib/Tue, 23 Sep 2025 00:49:31 +0000https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/chainguard-images/tooling/building-java-containers-with-jib/Google’s Jib is a container image build tool designed specifically for Java applications. Unlike other approaches, Jib does not depend on Docker or require users to write Dockerfiles. Instead, Jib integrates directly with the Maven and Gradle build systems to create container images for Java applications. When paired with Chainguard Java Containers, these tools provide: improved security through minimal base images, faster builds through layer optimization, and simplified CI/CD integration without Docker daemon requirements This tutorial will walk you through building a demo application with Maven, Jib, and Chainguard Containers.https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/chainguard-images/tooling/building-go-containers-with-ko/Thu, 11 Sep 2025 08:49:31 +0000https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/chainguard-images/tooling/building-go-containers-with-ko/Ko is a tool for building Go applications into container images without using Dockerfiles. When combined with Chainguard’s minimal containers, Ko creates smaller and more secure container runtimes with only your application and its essential dependencies. This tutorial will guide you through installing Ko and using it to containerize Go applications with Chainguard Containers. By the end of this tutorial, you’ll understand how to build, configure, and deploy secure, custom containers with your Go-based application using Ko’s streamlined workflow.https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/chainguard-images/features/ca-docs/custom-assembly/Wed, 19 Feb 2025 11:07:52 +0200https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/chainguard-images/features/ca-docs/custom-assembly/Chainguard Custom Assembly enables organizations to build container images tailored to their internal requirements and application dependencies, without sacrificing security. By extending Chainguard’s hardened base images with additional packages, environment variables, user accounts, and certificates, teams can reduce CVE exposure while maintaining the flexibility their workflows demand. This overview of Custom Assembly outlines how it works, its limitations, and how you can use container images customized with Custom Assembly. For a more hands-on tutorial on using Custom Assembly, Chainguard Academy currently has documentation for the following methods of managing the tool:https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/chainguard-images/features/ca-docs/faq/Wed, 19 Feb 2025 11:07:52 +0200https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/chainguard-images/features/ca-docs/faq/What is Chainguard’s Custom Assembly? Custom Assembly is a tool from Chainguard that allows users to build customized container images by assembling packages from a curated, secure set of base images provided by Chainguard. How does Custom Assembly help with container image security? While no system is perfectly secure, Custom Assembly is designed to help you build container images with a strong security posture. By using only guarded packages from Chainguard’s curated and actively maintained images, you benefit from daily CVE scanning and Chainguard’s CVE remediation SLA.https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/chainguard-images/getting-started/c/Tue, 30 Jul 2024 15:54:33 +0000https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/chainguard-images/getting-started/c/Chainguard provides security-hardened container images for C and C++ development, offering minimal runtime environments with significantly reduced vulnerabilities compared to traditional base images. Built on Chainguard’s own OS, these containers enable more secure deployment of compiled programs through purpose-built images for different linking scenarios. This guide demonstrates three approaches to compiling and running C/C++ applications using Chainguard’s specialized containers. The container image with which you choose to run your compiled program depends on the nature of your binaries.https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/chainguard-images/features/eol-gp-overview/Wed, 14 May 2025 08:49:31 +0000https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/chainguard-images/features/eol-gp-overview/Typically, specific versions of software receive updates on a schedule for a set amount of time. Eventually, though, every version of software will stop receiving support. When project maintainers stop providing updates, it’s known as the End-of-Life (EOL) stage. It’s recommended that when a software version reaches the EOL phase, users should migrate their projects to a later version, as EOL software is known to accumulate vulnerabilities. However, there are cases where an organization may want to continue using a container image after it has reached end-of-life.https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/chainguard-images/about/what-chainguard-will-build/Mon, 13 Jan 2025 11:07:52 +0200https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/chainguard-images/about/what-chainguard-will-build/There are currently over 2,000 Chainguard Containers and that number is always growing as we add more to our expanding catalog. If you would like a Chainguard Container that is not yet available, or inquire about whether we would build a given container image, Chainguard will endeavor to perform an analysis on the request. Chainguard aims to build new container images that are relevant to our customers and to support broader software security goals.https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/chainguard-images/staying-secure/enforcement/opa-gatekeeper/Tue, 02 Sep 2025 10:00:00 +0000https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/chainguard-images/staying-secure/enforcement/opa-gatekeeper/Gatekeeper is an admission controller that enforces policies in Kubernetes clusters. This article describes how it can be leveraged to ensure resources follow best practices related to the use of Chainguard Containers. Prerequisites To follow the examples in this guide, you will need the following: kubectl — the command line interface tool for Kubernetes — installed on your local machine. Administrative access to a Kubernetes cluster where OPA Gatekeeper is already installed.https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/factory/overview/Tue, 15 Jul 2025 08:49:31 +0000https://deploy-preview-3176--ornate-narwhal-088216.netlify.app/chainguard/factory/overview/Chainguard Factory is the automated build infrastructure that continuously monitors, builds, and updates thousands of open source projects to deliver containers, libraries, and VMs with a strong security posture and the latest patches. This massive automation system tackles one of the industry’s biggest challenges: keeping software dependencies current at scale while maintaining security and compatibility across the entire open source ecosystem. It is hard to overstate the sheer scale of Chainguard’s task of being the secure source for open source.