Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Easy and positive experience
What do you like best about the product?
Attentive support team
Well documented service
Easy to use portal/UI
Flexible to customizations we requested
Well documented service
Easy to use portal/UI
Flexible to customizations we requested
What do you dislike about the product?
None I can think of.
The limiting factor for chainguard is the upstream product maintenaners speed.
The limiting factor for chainguard is the upstream product maintenaners speed.
What problems is the product solving and how is that benefiting you?
We use chainguard images to reduce vulnerabilities and to support FIPS compliance.
They provide updates to OS packages and product dependencies which takes a singificant effort for product development teams.
FIPS compliance also important for ua to deliver our products to federal government customers/prospects. Chainguard makes it easy for us to maintain FIPS compliance by providing us base FIPS images and 3rd party FIPS images. We don't have to do the research and maintenance on our side.
They provide updates to OS packages and product dependencies which takes a singificant effort for product development teams.
FIPS compliance also important for ua to deliver our products to federal government customers/prospects. Chainguard makes it easy for us to maintain FIPS compliance by providing us base FIPS images and 3rd party FIPS images. We don't have to do the research and maintenance on our side.
- Leave a Comment |
- Mark review as helpful
Chainguard is very easy to use and deploy
What do you like best about the product?
I was extremely happy with how trivial it was to swap in their FIPS images in place of the FOSS images we were using. They had a whole onboarding call, but we'd already deployed them to development as it was that fast and easy.
What do you dislike about the product?
Their pricing was a battle, they don't differentiate between very simple images and very complex ones, so making the case to use them fully is very difficult. I think a pricing model that more accurately reflects their value add would help, as some images are inherently more complex to replace than others.
What problems is the product solving and how is that benefiting you?
They have FIPS support and vulnerability management via SCA.
Tech is great, and the team is excellent.
What do you like best about the product?
Chainguard has allowed us to develop at speed and scale allowing us to focus on features more than the development overhead, especially in mitigating CVEs. That said, the team that we interact with is the best part of Chainguard. Responsive, intelligent, and customer obsessed is the main reason we value and continue our relationship. Couldn't be happier.
What do you dislike about the product?
There isn't anything we don't like that I can think of.
What problems is the product solving and how is that benefiting you?
Chainguard helps our engineers focus on developing features. Previously, most time was spent trying to mitigate CVEs and our customers were getting new features deployed. Using Chainguard has significantly shifted that paradigm. Developing in the DoD landscape is harder than the private sector and this helps a lot.
We used chainguard base images to
What do you like best about the product?
Using chainguard essentially eliminates container library vulnerabilities coming from our Docker base images (as well as standard package installs!). When we scan our chainguard based images with grype, or snyk, the only vulnerabilities left are from our application installs. We are in the process of implementing chainguard base images across the enterprise, and are expecting over 80% reduction in open vulnerabilities across the board. Chainguard's customer support is excellent, they are one of the best software vendors I have ever worked with.
What do you dislike about the product?
The only real downside is you have to modify your Dockerfiles to work with the Wolfi OS, which is alpine-like (i.e. you have to use apk, etc.) If your current base image is not alpine based, there is some learning curve and work.
What problems is the product solving and how is that benefiting you?
We have a significant backlog of known container vulnerabilities in our containers. Hardening and managing clean base images is a lot of work and takes specialized expertise that our development teams don't have. Changuard provides base images that work out of the box for most of our tech stacks and alleviates the need to manage hardened base images ourselves.
Simplifying security
What do you like best about the product?
Security is hard on its own, and while many vendors focus on selling detection products, Chainguard does the opposite and solve a painful problem with little effort from users.
What do you dislike about the product?
Chainguard offers some free to use images, but only "latest" version and not stable versions. This makes impossible to use as an individual or for open source projects.
What problems is the product solving and how is that benefiting you?
Zero security vulnerability containers.
My experiences using Chainguard Nodejs base image was amazing!
What do you like best about the product?
- Very small image size,
- Very small to none CVEs from my experiences.
- Very large repo supporting many languages and technologies,
- Ease to use,
- Ease of implementation.
- Very small to none CVEs from my experiences.
- Very large repo supporting many languages and technologies,
- Ease to use,
- Ease of implementation.
What do you dislike about the product?
A great part of it, is free, but for some custom implementation or features , you may pay.
What problems is the product solving and how is that benefiting you?
CVEs, better quality software.
Chainguard makes securing applications much easier
What do you like best about the product?
It's simplicity. Changing from a regular Image to use a Chainguard image as the base helps mitigate a lot of vulnerabilities, and it's a change any developer would be able to easily implement.
This is something that I would recommand to any developer or business that is looking to harden their applications. Securing the base image is the first step everyone should take.
This is something that I would recommand to any developer or business that is looking to harden their applications. Securing the base image is the first step everyone should take.
What do you dislike about the product?
I have some uncertaincies about what the support will look like for users using the Developer Free tier in the future. Would like them to sllow all image versions and not just latest/stable for Free Tier.
What problems is the product solving and how is that benefiting you?
Bring simplicity to security. It hardens the application image that our containers use to run.
Game-Changer
What do you like best about the product?
Since implementing Chainguard's hardened base images, we've seen a dramatic reduction in vulnerabilities—over 70%. This reduction not only enhances our security posture but also saves our engineering teams an enormous amount of time that would otherwise be spent on vulnerability management and patching. Chainguard's approach introduces excellent security practices out of the box, meaning our engineers no longer have to worry about critical security concerns like rootless containers, proper permissions, and secure registries.
Chainguard sets itself apart by providing supply chain security through purpose-built packages in their registry, making it clear that while competitors might still be playing catch-up in the minor leagues, Chainguard is clearly in a league of its own, setting the standard for supply chain security. We've maximized the value of these images by ensuring reuse across our organization, categorizing images into language-based and application-based groups. This strategy allows us to gain the most value through frequent reuse of language-based images, while our centralized platform engineering teams benefit from using application-specific images at a different scale.
To drive adoption, we've integrated Chainguard images into our centralized internal developer portal, which our developers are already familiar with and use regularly. This seamless integration has significantly boosted adoption rates, further supported by our vulnerability management reduction program. Through this program, we've been able to recommend Chainguard images, reassuring teams that transitioning will save time and energy.
The service level agreements (SLAs) provided by Chainguard are also very attractive. The high speed of image updates ensures that we are always protected with the latest security enhancements. We've even integrated Chainguard into our automatic update tools, so our developers are always confident that they're working with the most up-to-date versions.
Overall, Chainguard's hardened base images have been a game-changer for our organization, providing unparalleled security, efficiency, and peace of mind.
Chainguard sets itself apart by providing supply chain security through purpose-built packages in their registry, making it clear that while competitors might still be playing catch-up in the minor leagues, Chainguard is clearly in a league of its own, setting the standard for supply chain security. We've maximized the value of these images by ensuring reuse across our organization, categorizing images into language-based and application-based groups. This strategy allows us to gain the most value through frequent reuse of language-based images, while our centralized platform engineering teams benefit from using application-specific images at a different scale.
To drive adoption, we've integrated Chainguard images into our centralized internal developer portal, which our developers are already familiar with and use regularly. This seamless integration has significantly boosted adoption rates, further supported by our vulnerability management reduction program. Through this program, we've been able to recommend Chainguard images, reassuring teams that transitioning will save time and energy.
The service level agreements (SLAs) provided by Chainguard are also very attractive. The high speed of image updates ensures that we are always protected with the latest security enhancements. We've even integrated Chainguard into our automatic update tools, so our developers are always confident that they're working with the most up-to-date versions.
Overall, Chainguard's hardened base images have been a game-changer for our organization, providing unparalleled security, efficiency, and peace of mind.
What do you dislike about the product?
The documentation at times fall a little behind and the modern authentication mechanisms at times can create difficulties in integrating with other existing platforms that are not yet supportive of technologies like OIDC. Quite a few of the images require rework to convert from a standard Dockerhub image however, I believe that's expected.
What problems is the product solving and how is that benefiting you?
Reducing container, image, vulnerabilities and creating a solid secure base to build upon
Time-Saving, Secure Containers Solutions!
What do you like best about the product?
Chainguard allows developers to save a lot of time and effort by providing ready-to-use container images that are secure. In addition, the images provided are very lightweight.
What do you dislike about the product?
The custom linux distribution may be harder to work with, but wolfi-base is still quite similar to Alpine and hence not too complex.
What problems is the product solving and how is that benefiting you?
They provide off the shelf image solutions to secure you deployment/release containers. In other words, Chainguard allows you to secure the environment in which you deploy your applications to.
Chainguard has changed the game when it comes to remediating vulns in images.
What do you like best about the product?
I love the ease of use for our dev teams to switch over and cut their vulnerabilities down. Integrating it into our pipelines has been very easy. Customer support has been excellent and responsive.
What do you dislike about the product?
At this time of using the product I do not have any dislikes
What problems is the product solving and how is that benefiting you?
Teams have been struggling to bring their vulnerabilities down on their images. This takes so much off their plates and not having to worry about it.
showing 1 - 10