Sold by: Chainguard
Deployed on AWS
Chainguard Images are a collection of minimal, hardened container images that are patched and rebuilt daily, and come with low-to-zero known CVEs, SLSA 2 compliance, signatures, and SBOMs.
Overview
Chainguard Images are a collection of minimal, hardened container images. They only contain what is required to build or run your application, delivering on average a 97.6% reduction in CVEs. Each Chainguard Image is patched and rebuilt daily from source with the latest security fixes and CVE remediations, resulting in low-to-zero known CVEs, verifiable image signatures and attestations, high-quality SBOMs, and SLSA Level 2 - Build compliance.
The Chainguard Images inventory contains images for the most popular base images, including Go, Python, Ruby, PHP, Node, and more; and a selection of common developer tools, applications, data products, and servers.
Chainguard Production Images are available for FIPS compliance, major and minor versions, enterprise SLAs, and customer support. Chainguard offers custom pricing through AWS Marketplace Private Offers.
Chainguard provides custom pricing for customers via Private Offer. Please contact AWS-marketplace@chainguard.dev for more information on our pricing model. Pricing displayed is per Image.
Highlights
- Low-to-zero known CVEs with daily patches and rebuilds
- Full SLSA Build Level 2 provenance, signatures, and SBOMs
- Images with FIPS validation available upon request
Details
Sold by
Categories
Delivery method
Deployed on AWS
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/12 months |
|---|---|---|
Starter Images | :latest version of OSS packages | $0.00 |
Application Image | The listed pricing is for illustrative purposes only and does not reflect actual pricing, which will be provided upon request, exclusively as part of a private offer from Chainguard | $0.01 |
Base Image | The listed pricing is for illustrative purposes only and does not reflect actual pricing, which will be provided upon request, exclusively as part of a private offer from Chainguard | $0.01 |
FIPS Image | The listed pricing is for illustrative purposes only and does not reflect actual pricing, which will be provided upon request, exclusively as part of a private offer from Chainguard | $0.01 |
AI Image | The listed pricing is for illustrative purposes only and does not reflect actual pricing, which will be provided upon request, exclusively as part of a private offer from Chainguard | $0.01 |
Standard CSM | The listed pricing is for illustrative purposes only and does not reflect actual pricing, which will be provided upon request, exclusively as part of a private offer from Chainguard | $0.01 |
Vendor refund policy
Contact us for refund information
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
![Chainguard [Private Offer Only]](https://d7umqicpi7263.cloudfront.net/img/product/d10af68b-bd79-4d3d-a55e-7c30cf740197.com/086810d384270bdab3f49b044aacc89f)
Chainguard [Private Offer Only]
By Carahsoft Technology Corporation
Chainguard Images are a collection of container images designed for security and minimalism.
The opportunity is real! Are you ready to sell your cloud service to U.S. Government agencies? FedRAMP is designed to grow and accelerate the adoption of cloud services by the federal government. Agencies are allocating a $74B budget for IT spending in FY2024. Partner with ScaleSec and Schellman to unlock a whole new sales pipeline for your product on the FedRAMP Marketplace, then repeat success and sell your service to other agencies.
Customer reviews
Naweed J.
Why we chose Chainguard for securing container images
Reviewed on May 27, 2025
Review provided by G2
What do you like best about the product?
Chainguard’s minimalist, hardened container images with zero known CVEs, is going to significantly reduce our vulnerability management overhead. Not having to constantly chase patch cycles will save our teams countless hours.
The images are not just secure by default but gives us the confidence in both their integrity and provenance. We are currently looking at wider adoption across our teams and the society. What sets Chainguard apart is their commitment to transparency and compliance, making them a top choice for organisations with high security and regulatory requirements. If you are looking to build a secure, resilient container strategy, Changuard is worth serious consideration.
The images are not just secure by default but gives us the confidence in both their integrity and provenance. We are currently looking at wider adoption across our teams and the society. What sets Chainguard apart is their commitment to transparency and compliance, making them a top choice for organisations with high security and regulatory requirements. If you are looking to build a secure, resilient container strategy, Changuard is worth serious consideration.
What do you dislike about the product?
This is very stage at the moment, but we look forward to working closely with Chainguard for feedbacks we get from our team as we start our wider rollout.
What problems is the product solving and how is that benefiting you?
We spend countless hours triaging CVEs, chasing patches and validating fixes - only to repeat the process when another image or dependency gets flagged. This endless cycle drains time, and slows down releases, Chainguard addresses this by eliminating the problem at the source with their secure, minimal images.
Shift left has become a must in modern DevSecOps, pushing security earlier into the development cycle to catch vulnerabilities before they reach production. By embedding security early in our CICD pipelines, Chainguard will allow the team to focus on building features and not fixing vulnerabilities, it's about making left lighter.
Shift left has become a must in modern DevSecOps, pushing security earlier into the development cycle to catch vulnerabilities before they reach production. By embedding security early in our CICD pipelines, Chainguard will allow the team to focus on building features and not fixing vulnerabilities, it's about making left lighter.
Leave a comment0 comments
Financial Services
Fantastic Product and an Even Better Team!
Reviewed on May 23, 2025
Review provided by G2
What do you like best about the product?
From scoping to project completion the Chainguard team was amazing to work with and provided excellent customer support! The ease of use, implementation and integration also helped! Looking forward for new features being released!
What do you dislike about the product?
I have found no issue while working with the product so far!
What problems is the product solving and how is that benefiting you?
Chainguard is helping us reduce vulnerabilities by shifting left and reducing engineering time that it takes to patch vulnerabilities, saving us time and money!
Chandra G.
Secure, Minimal, and Well-Supported — A Great Experience with Room for Transparency Improvements
Reviewed on May 19, 2025
Review provided by G2
What do you like best about the product?
Chainguard Images have been a transformative addition to our software supply chain strategy. The minimal, hardened, and continuously verified container images significantly reduce our attack surface while ensuring compliance and operational reliability.
One of the biggest pain points in container security is managing outdated or bloated base images filled with vulnerabilities. Chainguard solves this brilliantly with distroless, signed images that are continuously updated and come with built-in provenance and SBOMs. It’s clear they’ve thought deeply about what modern development teams need to build secure-by-default applications.
What really sets Chainguard apart, though, is their exceptional support. From day one, their team has been proactive, responsive, and genuinely invested in our success. Whether it was help with integration, optimizing our image choices, or answering security policy questions, their support engineers went above and beyond. Their documentation is also thorough and developer-friendly, which makes onboarding smooth and intuitive.
In summary: Chainguard Images bring peace of mind to any DevSecOps team, and their world-class support makes them a true partner in software supply chain security. Highly recommended for anyone building or deploying containers in a production environment
One of the biggest pain points in container security is managing outdated or bloated base images filled with vulnerabilities. Chainguard solves this brilliantly with distroless, signed images that are continuously updated and come with built-in provenance and SBOMs. It’s clear they’ve thought deeply about what modern development teams need to build secure-by-default applications.
What really sets Chainguard apart, though, is their exceptional support. From day one, their team has been proactive, responsive, and genuinely invested in our success. Whether it was help with integration, optimizing our image choices, or answering security policy questions, their support engineers went above and beyond. Their documentation is also thorough and developer-friendly, which makes onboarding smooth and intuitive.
In summary: Chainguard Images bring peace of mind to any DevSecOps team, and their world-class support makes them a true partner in software supply chain security. Highly recommended for anyone building or deploying containers in a production environment
What do you dislike about the product?
One area that could use improvement is transparency around source code and SBOM (Software Bill of Materials) access. While the images are secure and well-maintained, having easier access to corresponding source repositories and complete SBOMs—preferably in an automated or standardized format—would help us meet internal audit and compliance requirements more seamlessly.
What problems is the product solving and how is that benefiting you?
The built-in signing, provenance, and emphasis on secure defaults have given our team increased confidence in what we’re deploying. Integration was straightforward, and the developer experience has been smooth from the start.
Ben C.
Many fewer CVE tickets let me focus on real work
Reviewed on May 16, 2025
Review provided by G2
What do you like best about the product?
My team had a huge backlog in JIRA of CVEs we had to remediate. Resolving a CVE takes time away from actual work, as we had to wait for the CVE to be resolved, push the fixes, verify the fixes were passing security scans, then finally backport fixes to old releases we maintained.
It all took a long time, was a major effort, and didn't scale well as we had more CVEs than I want to admit :D.
Migrating from our team's existing images to chainguard only took about a day, and now using chainguard images totally saves us from having to deal with these CVEs, and lets us work on actual business problems, and not have to try to figure out how to patch some obscure lib install.
It all took a long time, was a major effort, and didn't scale well as we had more CVEs than I want to admit :D.
Migrating from our team's existing images to chainguard only took about a day, and now using chainguard images totally saves us from having to deal with these CVEs, and lets us work on actual business problems, and not have to try to figure out how to patch some obscure lib install.
What do you dislike about the product?
Sometimes, it's tough to troubleshoot live issues where you need to do kubectl exec into a pod. This is a somewhat rare edge case, but it's something we've run into.
It's also sometimes hard to get certain packages fully working (eg a python pandas packages needs a driver which may not be present in the base image).
It's also sometimes hard to get certain packages fully working (eg a python pandas packages needs a driver which may not be present in the base image).
What problems is the product solving and how is that benefiting you?
Resolving CVEs and keeping images secure so that I don't have to.
VISHNU V.
Great FIPS compliant images
Reviewed on May 15, 2025
Review provided by G2
What do you like best about the product?
Zero CVE images which we can directly consume in our products
What do you dislike about the product?
Nothing as of now which we have encountered
What problems is the product solving and how is that benefiting you?
We can directly get the FIPS certified images and use them in our products which we ship to federal customers by using the images from chainguard as base images