~ / directory / chainguard
CH
Mixed · Identity & AppSec · reviewed 2026-04

Chainguard

Hardened container images with zero known CVEs — supply chain security for AI pipelines.

Visit chainguard.dev
01

What it does

Provides hardened, minimal container images with zero known CVEs for AI and general workloads. Every image includes signed SBOMs and provenance attestation. Eliminates a huge class of supply chain risk by starting from a verified, minimal base.

02

Security relevance

AI pipelines run in containers. Starting from a zero-CVE base image eliminates the most common supply chain attack vector — vulnerable dependencies in base images. Signed SBOMs provide verifiable provenance for compliance and audit requirements. Directly addresses LLM03 (Supply Chain).

03

When to use it

Use when building container-based AI infrastructure. Drop-in replacement for standard base images — swap your Dockerfile FROM line and immediately reduce your vulnerability surface. Guided setup that doesn't require changing your build process.

04

OWASP coverage

Risks addressed — mapped to both OWASP Top 10 standards. 2 in LLM, 1 in Agentic.

LLM Top 10 · 2025 · 2/10 covered
01
02
03
04
05
06
07
08
09
10
LLM03 · Supply Chain LLM05 · Improper Output Handling
Agentic Top 10 · 2026 · 1/10 covered
01
02
03
04
05
06
07
08
09
10
ASI04 · Agentic Supply Chain Vulnerabilities
05

The raw record

What Yuntona stores. Single source of truth — fork it on GitHub.

name: Chainguard
slug: chainguard
type: Mixed
category: Identity & AppSec
url: https://chainguard.dev

reviewed:   2026-04
added:      2026-04
updated:    2026-04

risks:
  llm:  [LLM03, LLM05]
  asi:  [ASI04]

complexity:    Guided Setup
pricing:       —
audience:      Builder
lifecycle:     [deploy]

tags: [Container, Open Source, SBOM, Supply Chain]