Sold by: Chainguard
Chainguard Images are a collection of minimal, hardened container images that are patched and rebuilt daily, and come with low-to-zero known CVEs, SLSA 2 compliance, signatures, and SBOMs.
Sold by: Chainguard
Overview
Chainguard Images are a collection of minimal, hardened container images. They only contain what is required to build or run your application, delivering on average a 97.6% reduction in CVEs. Each Chainguard Image is patched and rebuilt daily from source with the latest security fixes and CVE remediations, resulting in low-to-zero known CVEs, verifiable image signatures and attestations, high-quality SBOMs, and SLSA Level 2 - Build compliance. The Chainguard Images inventory contains images for the most popular base images, including Go, Python, Ruby, PHP, Node, and more; and a selection of common developer tools, applications, data products, and servers. Chainguard Production Images are available for FIPS compliance, major and minor versions, enterprise SLAs, and customer support. Chainguard offers custom pricing through AWS Marketplace Private Offers. Contact AWS-marketplace@chainguard.dev for more information on our enterprise pricing. Pricing displayed is per Image.
Highlights
- Low-to-zero known CVEs with daily patches and rebuilds
- Full SLSA Build Level 2 provenance, signatures, and SBOMs
- Images with FIPS validation available upon request
Details
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on contract duration. You pay upfront or in installments according to your contract terms with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Dimension | Description | Cost/12 months |
|---|---|---|
Developer Images | :latest version of OSS packages | $0.00 |
Application Images | Servers, developer tools, databases, (e.g. nginx, mariadb, kubernetes) | $29,000.00 |
Base Images | Languages, frameworks (e.g. java, go, .NET) | $39,000.00 |
FIPS Images | FIPS versions of any image, Includes STIG | $59,000.00 |
Standard CSM | Onboarding and Go-Live Tracking Shared Slack channel Best Practices and Education Reviews Change Management and Escalations | $25,000.00 |
AI Images | Images for CPU and GPU Machine Learning workloads. (ex: Spark, Kubeflow, PyTorch, CUDA) | $69,000.00 |
Vendor refund policy
Contact us for refund information
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
![Chainguard [Private Offer Only]](https://d7umqicpi7263.cloudfront.net/img/product/92385aa4-c1aa-483f-aa8f-5735fb5adcce.com/086810d384270bdab3f49b044aacc89f)
Chainguard [Private Offer Only]
By Carahsoft Technology Corporation
Chainguard Images are a collection of container images designed for security and minimalism.
The opportunity is real! Are you ready to sell your cloud service to U.S. Government agencies? FedRAMP is designed to grow and accelerate the adoption of cloud services by the federal government. Agencies are allocating a $74B budget for IT spending in FY2024. Partner with ScaleSec and Schellman to unlock a whole new sales pipeline for your product on the FedRAMP Marketplace, then repeat success and sell your service to other agencies.
Customer reviews
Hospital & Health Care
Extremely satisfy with Chainguard support
Reviewed on Nov 22, 2024
Review provided by G2
What do you like best about the product?
Chainguard support is excellent and fast. Chainguard images are lean, secure and easy to integrate. Updates are frequent and easy to implement. Users can pull any supported imgages with up-to-date features for frequency of use.
What do you dislike about the product?
Base chainguard images include minimum standard security configurations. Distroless prodution images without shell cause some inconvenience for testing, debugging purposes. Users need to learn different way to search and add packages.
What problems is the product solving and how is that benefiting you?
Using Chainguard container images help minimizing security vulnerabities and attack surfaces.
Leave a comment0 comments
Computer Software
Easy and positive experience
Reviewed on Nov 21, 2024
Review provided by G2
What do you like best about the product?
Attentive support team
Well documented service
Easy to use portal/UI
Flexible to customizations we requested
Well documented service
Easy to use portal/UI
Flexible to customizations we requested
What do you dislike about the product?
None I can think of.
The limiting factor for chainguard is the upstream product maintenaners speed.
The limiting factor for chainguard is the upstream product maintenaners speed.
What problems is the product solving and how is that benefiting you?
We use chainguard images to reduce vulnerabilities and to support FIPS compliance.
They provide updates to OS packages and product dependencies which takes a singificant effort for product development teams.
FIPS compliance also important for ua to deliver our products to federal government customers/prospects. Chainguard makes it easy for us to maintain FIPS compliance by providing us base FIPS images and 3rd party FIPS images. We don't have to do the research and maintenance on our side.
They provide updates to OS packages and product dependencies which takes a singificant effort for product development teams.
FIPS compliance also important for ua to deliver our products to federal government customers/prospects. Chainguard makes it easy for us to maintain FIPS compliance by providing us base FIPS images and 3rd party FIPS images. We don't have to do the research and maintenance on our side.
Drew W.
Chainguard is very easy to use and deploy
Reviewed on Nov 18, 2024
Review provided by G2
What do you like best about the product?
I was extremely happy with how trivial it was to swap in their FIPS images in place of the FOSS images we were using. They had a whole onboarding call, but we'd already deployed them to development as it was that fast and easy.
What do you dislike about the product?
Their pricing was a battle, they don't differentiate between very simple images and very complex ones, so making the case to use them fully is very difficult. I think a pricing model that more accurately reflects their value add would help, as some images are inherently more complex to replace than others.
What problems is the product solving and how is that benefiting you?
They have FIPS support and vulnerability management via SCA.
Defense & Space
Tech is great, and the team is excellent.
Reviewed on Nov 18, 2024
Review provided by G2
What do you like best about the product?
Chainguard has allowed us to develop at speed and scale allowing us to focus on features more than the development overhead, especially in mitigating CVEs. That said, the team that we interact with is the best part of Chainguard. Responsive, intelligent, and customer obsessed is the main reason we value and continue our relationship. Couldn't be happier.
What do you dislike about the product?
There isn't anything we don't like that I can think of.
What problems is the product solving and how is that benefiting you?
Chainguard helps our engineers focus on developing features. Previously, most time was spent trying to mitigate CVEs and our customers were getting new features deployed. Using Chainguard has significantly shifted that paradigm. Developing in the DoD landscape is harder than the private sector and this helps a lot.
Ken A.
We used chainguard base images to
Reviewed on Nov 18, 2024
Review provided by G2
What do you like best about the product?
Using chainguard essentially eliminates container library vulnerabilities coming from our Docker base images (as well as standard package installs!). When we scan our chainguard based images with grype, or snyk, the only vulnerabilities left are from our application installs. We are in the process of implementing chainguard base images across the enterprise, and are expecting over 80% reduction in open vulnerabilities across the board. Chainguard's customer support is excellent, they are one of the best software vendors I have ever worked with.
What do you dislike about the product?
The only real downside is you have to modify your Dockerfiles to work with the Wolfi OS, which is alpine-like (i.e. you have to use apk, etc.) If your current base image is not alpine based, there is some learning curve and work.
What problems is the product solving and how is that benefiting you?
We have a significant backlog of known container vulnerabilities in our containers. Hardening and managing clean base images is a lot of work and takes specialized expertise that our development teams don't have. Changuard provides base images that work out of the box for most of our tech stacks and alleviates the need to manage hardened base images ourselves.