Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Why we chose Chainguard for securing container images
What do you like best about the product?
Chainguard’s minimalist, hardened container images with zero known CVEs, is going to significantly reduce our vulnerability management overhead. Not having to constantly chase patch cycles will save our teams countless hours.
The images are not just secure by default but gives us the confidence in both their integrity and provenance. We are currently looking at wider adoption across our teams and the society. What sets Chainguard apart is their commitment to transparency and compliance, making them a top choice for organisations with high security and regulatory requirements. If you are looking to build a secure, resilient container strategy, Changuard is worth serious consideration.
The images are not just secure by default but gives us the confidence in both their integrity and provenance. We are currently looking at wider adoption across our teams and the society. What sets Chainguard apart is their commitment to transparency and compliance, making them a top choice for organisations with high security and regulatory requirements. If you are looking to build a secure, resilient container strategy, Changuard is worth serious consideration.
What do you dislike about the product?
This is very stage at the moment, but we look forward to working closely with Chainguard for feedbacks we get from our team as we start our wider rollout.
What problems is the product solving and how is that benefiting you?
We spend countless hours triaging CVEs, chasing patches and validating fixes - only to repeat the process when another image or dependency gets flagged. This endless cycle drains time, and slows down releases, Chainguard addresses this by eliminating the problem at the source with their secure, minimal images.
Shift left has become a must in modern DevSecOps, pushing security earlier into the development cycle to catch vulnerabilities before they reach production. By embedding security early in our CICD pipelines, Chainguard will allow the team to focus on building features and not fixing vulnerabilities, it's about making left lighter.
Shift left has become a must in modern DevSecOps, pushing security earlier into the development cycle to catch vulnerabilities before they reach production. By embedding security early in our CICD pipelines, Chainguard will allow the team to focus on building features and not fixing vulnerabilities, it's about making left lighter.
- Leave a Comment |
- Mark review as helpful
Fantastic Product and an Even Better Team!
What do you like best about the product?
From scoping to project completion the Chainguard team was amazing to work with and provided excellent customer support! The ease of use, implementation and integration also helped! Looking forward for new features being released!
What do you dislike about the product?
I have found no issue while working with the product so far!
What problems is the product solving and how is that benefiting you?
Chainguard is helping us reduce vulnerabilities by shifting left and reducing engineering time that it takes to patch vulnerabilities, saving us time and money!
Secure, Minimal, and Well-Supported — A Great Experience with Room for Transparency Improvements
What do you like best about the product?
Chainguard Images have been a transformative addition to our software supply chain strategy. The minimal, hardened, and continuously verified container images significantly reduce our attack surface while ensuring compliance and operational reliability.
One of the biggest pain points in container security is managing outdated or bloated base images filled with vulnerabilities. Chainguard solves this brilliantly with distroless, signed images that are continuously updated and come with built-in provenance and SBOMs. It’s clear they’ve thought deeply about what modern development teams need to build secure-by-default applications.
What really sets Chainguard apart, though, is their exceptional support. From day one, their team has been proactive, responsive, and genuinely invested in our success. Whether it was help with integration, optimizing our image choices, or answering security policy questions, their support engineers went above and beyond. Their documentation is also thorough and developer-friendly, which makes onboarding smooth and intuitive.
In summary: Chainguard Images bring peace of mind to any DevSecOps team, and their world-class support makes them a true partner in software supply chain security. Highly recommended for anyone building or deploying containers in a production environment
One of the biggest pain points in container security is managing outdated or bloated base images filled with vulnerabilities. Chainguard solves this brilliantly with distroless, signed images that are continuously updated and come with built-in provenance and SBOMs. It’s clear they’ve thought deeply about what modern development teams need to build secure-by-default applications.
What really sets Chainguard apart, though, is their exceptional support. From day one, their team has been proactive, responsive, and genuinely invested in our success. Whether it was help with integration, optimizing our image choices, or answering security policy questions, their support engineers went above and beyond. Their documentation is also thorough and developer-friendly, which makes onboarding smooth and intuitive.
In summary: Chainguard Images bring peace of mind to any DevSecOps team, and their world-class support makes them a true partner in software supply chain security. Highly recommended for anyone building or deploying containers in a production environment
What do you dislike about the product?
One area that could use improvement is transparency around source code and SBOM (Software Bill of Materials) access. While the images are secure and well-maintained, having easier access to corresponding source repositories and complete SBOMs—preferably in an automated or standardized format—would help us meet internal audit and compliance requirements more seamlessly.
What problems is the product solving and how is that benefiting you?
The built-in signing, provenance, and emphasis on secure defaults have given our team increased confidence in what we’re deploying. Integration was straightforward, and the developer experience has been smooth from the start.
Many fewer CVE tickets let me focus on real work
What do you like best about the product?
My team had a huge backlog in JIRA of CVEs we had to remediate. Resolving a CVE takes time away from actual work, as we had to wait for the CVE to be resolved, push the fixes, verify the fixes were passing security scans, then finally backport fixes to old releases we maintained.
It all took a long time, was a major effort, and didn't scale well as we had more CVEs than I want to admit :D.
Migrating from our team's existing images to chainguard only took about a day, and now using chainguard images totally saves us from having to deal with these CVEs, and lets us work on actual business problems, and not have to try to figure out how to patch some obscure lib install.
It all took a long time, was a major effort, and didn't scale well as we had more CVEs than I want to admit :D.
Migrating from our team's existing images to chainguard only took about a day, and now using chainguard images totally saves us from having to deal with these CVEs, and lets us work on actual business problems, and not have to try to figure out how to patch some obscure lib install.
What do you dislike about the product?
Sometimes, it's tough to troubleshoot live issues where you need to do kubectl exec into a pod. This is a somewhat rare edge case, but it's something we've run into.
It's also sometimes hard to get certain packages fully working (eg a python pandas packages needs a driver which may not be present in the base image).
It's also sometimes hard to get certain packages fully working (eg a python pandas packages needs a driver which may not be present in the base image).
What problems is the product solving and how is that benefiting you?
Resolving CVEs and keeping images secure so that I don't have to.
Great FIPS compliant images
What do you like best about the product?
Zero CVE images which we can directly consume in our products
What do you dislike about the product?
Nothing as of now which we have encountered
What problems is the product solving and how is that benefiting you?
We can directly get the FIPS certified images and use them in our products which we ship to federal customers by using the images from chainguard as base images
I am surprised this is a business.
What do you like best about the product?
Sometimes the images are drop in compatible.
What do you dislike about the product?
Many images have arbitrarily changed the entrypoint + command args, and require changes on every use.
What problems is the product solving and how is that benefiting you?
None. We have no automation to keep the images up to date, thus CVEs in older images are present in our products.
Quick and Easy Migration
What do you like best about the product?
Migrating to using Docker images from Chainguard was a pretty seamless experience and it results in better software supply chain security. I also received a lot of quick help from the Chainguard team when I was coming across a problem in my Dockerfile script!
What do you dislike about the product?
It might look very overwhelming to migrate at first glance. It might help to emphasize that it's quick and fairly painless.
What problems is the product solving and how is that benefiting you?
A lot of our services use Dockerfiles and it seems that many of them had hundreds of vulnerabilities. Using Chainguard ensures stronger software supply chain practices.
Mix of feelings
What do you like best about the product?
0 CVE's, Good support, Very good technical team
What do you dislike about the product?
Sometimes we need remind them to update some images
What problems is the product solving and how is that benefiting you?
Boost for FedRamp
Good range of base images, great support
What do you like best about the product?
Since adopting Chainguard the number of vulnerabilities our scanning tools have found in our services has dramaticdally decreased. Chainguard also offers a good range of base images and has been able to build custom app images for us.
What do you dislike about the product?
Initial learning curve on how to migrate from standard base images to Chainguard images. We have had issues integrating Chainguard's Docker registry with out artifact storage tool.
What problems is the product solving and how is that benefiting you?
Automating the patching of our base images, so our team doesn't need to worry about it.
Extremely satisfy with Chainguard support
What do you like best about the product?
Chainguard support is excellent and fast. Chainguard images are lean, secure and easy to integrate. Updates are frequent and easy to implement. Users can pull any supported imgages with up-to-date features for frequency of use.
What do you dislike about the product?
Base chainguard images include minimum standard security configurations. Distroless prodution images without shell cause some inconvenience for testing, debugging purposes. Users need to learn different way to search and add packages.
What problems is the product solving and how is that benefiting you?
Using Chainguard container images help minimizing security vulnerabities and attack surfaces.
showing 1 - 10