The people who are worried that AI will take their software development jobs are missing a huge part of what software development is. As you become more senior, the job is way more than typing into an editor or an IDE.

AGPL fine print

The first version of our Chainguard ⛓️ image for the Google Cloud SDK is available, and the results are kinda staggering. 553MB vs. 2.87GB! 0 CVEs vs. 591! Try it at cgr.dev/chainguard/goo… !

“You probably wouldn’t pick up a random flash drive you found on the street and plug it into your laptop, but we regularly do exactly this with open source packages” github.blog/2023-04-19-int…

This is why Chainguard images reigns supreme 🤗 go.chainguard.dev/ReplicatedCase…

There's no magic behind our hardened containers Chainguard ⛓️ (yet!), just a lot of automation, careful building, and hard work. Here's a deep dive on one of our recent image builds that dropped the CVE count for the #pulumi image by over 700! chainguard.dev/unchained/chai…

FYI: "Summary of Upcoming Changes in OCI Image and Distribution Specs v1.1" opencontainers.org/posts/blog/202…

Earlier this week Go released a security fix. Yesterday Wolfi OS released that fix, and this morning every package that depended on Go was rebuilt from source to include that fix. In the process we identified a handful of ways to make this even faster, smoother, more automated.

If you use sigstore keyless signing and find yourself drowning in browser tabs, do yourself a favor and install this Chrome extension to close them for you! chrome.google.com/webstore/detai…

Join John Osborne John Osborne for a ⚡ Talk: Validating Kubernetes Images. 🎟️ bit.ly/3mUmkjh

I have a lot invested in sweatpants.

The future of security looks bright, you don't even need a key 🚫🔑 We partnered with sigstore to help you move away from traditional keys to keyless signing. Learn how to do this by adding just a few lines in a yml file: bit.ly/3PDaJPE

If you use sigstore, please consider +1'ing this issue as a feature request to show interest in signing Docker Official Images with it! github.com/docker/roadmap…

New scanner support! Amazon Web Services Inspector supports Chainguard ⛓️ images! Learn more: chainguard.dev/unchained/aws-…

When frame rate matches the rotor speed. 📽: Reece Deavor

This is an awesome feature. I wrote a script that uses it generate a CHANGELOG between 2 versions of a container - gist.github.com/johnfosborneii…

👀👀👀github.com/ossf/wg-securi…

Gross negligence.

“Your desired states are running out” 💀💀💀

Guys. Chainguard is worth every penny. I got to go on a date with my wife last night because I didn't have to remove CVEs from my container images.