Chainloop

Chainloop is joining @chainguard_dev Commercial Builds — hardened, zero CVEs, full provenance, FIPS-ready. Enterprises shouldn't have to choose between shipping software and trusting what's beneath it. chainloop.dev/blog/chainloop…

A new version of Chainloop just dropped With a new UI/UX foundation for what's to come, agentic policies and workflows support, new guardrails and security features, all of that is packed in this release. docs.chainloop.dev/changelog

If you are in New York, don't miss catching up with @danlishka; tons of new things are coming up on the Chainloop platform.

There is a lot of fear with regards to the Cyber Resiliency Act (CRA), but we believe that in the end, most of the security practices are rooted in well-known security and development best practices seen before, let's break it down chainloop.dev/blog/cyber-res…

🚀 The new @chainloopHQ major version is now available in the Bitnami catalog! A CNCF project to secure software supply chains with in-toto attestations, ready to deploy via containers and Helm charts. 🔐 Need FedRAMP compliance with FIPS, STIG? Check 👉 vmware.com/products/app-p…

September starts strong for the Chainloop team. See you in Vienna or Stockholm! chainloop.dev/blog/september…

At @chainloopHQ we've made solid progress on foundational components like Policies or visibility with Prometheus 🔥 and @grafana 🚀 Also, on solidifying our on-prem/SaaS offerings with our work on SOC-2, FIPS, and air gap environments support 🤓 chainloop.dev/blog/chainloop…

Welcome to the team! chainloop.dev/blog/welcoming…

Tap our team to get a sneak peek of our upcoming Chainloop platform at @RSAConference 🚀

We will be at #RSAC in San Francisco (May 6 - 9), an opportunity for you to see a demo of the upcoming @chainloopHQ Platform. We would love to discuss software supply chain security and get your insights. Contact us if you are interested or know someone who would be!

Chainloop was born open source, and today, we are reaffirming our commitment by joining @openssf. This will propel our mission of helping developers ship trusted software faster. github.com/chainloop-dev/…

Thanks to everyone who came to our talk at 3PM on Friday at @KubeCon_ The recording is not up yet, but in the meantime, check out our project and send feedback and comments! github.com/chainloop-dev/…

Chainloop is an Open Source Metadata Vault for your Software Supply Chain metadata, SBOMs, VEX, SARIF files, QA reports, and more. From today, you can programmatically collect and enforce pieces of evidence from your Dagger pipeline! chainloop.dev/blog/jumpstart…

Introducing the Daggerverse dagger.io/blog/introduci…

Starting in 1 hour - Live demos from @matiaspan26, @lmarsden, @gerhardlazu, and @chainloopHQ on the Dagger Community Call. See you there! dagger-io.zoom.us/webinar/regist…

If you want to nerd out about Software Supply Chain Security through metadata let us know. We'd love to meet you!

We are up to a good start this year! The Chainloop team will also be in Paris to give a talk at @KubeCon_ EU. We'll be discussing how to make your Software Bill Of Materials trustworthy end to end, from generation to storage and distribution. sched.co/1YeSg

Our team will be at @fosdem in Brussels, in three weeks, giving a talk about what it means and how to make the Software Bill Of Materials (SBOM) trustworthy. If you are around, don't be shy and come to say hi. We want to meet you! fosdem.org/2024/schedule/…

GitOps support is finally here in our latest @chainloopHQ release github.com/chainloop-dev/… 🚀

You might be on the journey of adopting Software Bill of Materials (SBOMs) in your organization to strengthen your security or to comply with external regulations. However, what if I tell you that your SBOMs might be useless and even harmful? chainloop.dev/blog/software-…