hardened-images
Safeguard articles tagged "hardened-images" — guides, analysis, and best practices for software supply chain and application security.
4 articles
Deep visibility into hardened/minimal container images (d...
Distroless images strip the package managers most scanners rely on. Here's how Safeguard achieves deep visibility into hardened images, compared to Black Duck's SCA heritage.
Chainguard alternatives for hardened container images
A side-by-side look at Chainguard alternatives, comparing Safeguard's supply chain security scope against Chainguard's hardened base image approach.
Chainguard vs Docker Official Images: hardening and CVE p...
A concrete look at how Chainguard's distroless Wolfi images and Docker Official Images differ on CVE counts, rebuild cadence, and default hardening.
STIG compliance scanning for hardened/Chainguard containe...
Chainguard images have near-zero CVEs, but shell-based scanners like Anchore flag them as STIG non-compliant. Here is why, and how to fix it.