Images! Images! Images!

Go deep with your Chainguard Images skills!

Cancel Apply

rate limit

Code not recognized.

About this course

This course is designed to make you a Chainguard Image expert. You'll learn how about the significance of different versions, how FIPS images work, and a variety of actions you can take such as retrieving an image's SBOM, comparing different image versions, and using the chainctl command line tool. 

Learning objectives

At the end of this course, students will be able to:

  • Identify and explain the key differences between development and production images, and understand the security implications of using each variant.
  • Retrieve a Chainguard Image's SBOM using the cosign command and understand the information provided in the SBOM, including license details and source code references.
  • Use the Tag History API to compare different builds of Chainguard Images and understand how to identify differences, such as added or removed vulnerabilities, between image versions.
  • Understand FIPS (Federal Information Processing Standards) and how to use FIPS-enabled versions of Chainguard Images to meet compliance requirements, including the use of FIPS-validated cryptography.
  • Use the chainctl command line interface tool to compare two Chainguard Images, identify added or removed vulnerabilities, and make informed decisions about image updates and deployments.

If you have any questions or comments, feel free to reach out at courses@chainguard.dev. 

Course Details

  • Developers; Software Professionals

  • <2h

  • 9 Lessons

DUMMY TEXT DO NOT EDIT PLZ

Curriculum

  • Differences Between Development and Production Images
  • How to Retrieve an Image's SBOM
  • How to Compare Images With chainctl diff
  • How to use the Tag History API
  • How to Debug Chainguard Images
  • How to use Chainguard Images going forward (1 week, 1 month, 1 year)
  • Multi-stage Builds
  • FIPS Images
  • Packages Overview

About this course

This course is designed to make you a Chainguard Image expert. You'll learn how about the significance of different versions, how FIPS images work, and a variety of actions you can take such as retrieving an image's SBOM, comparing different image versions, and using the chainctl command line tool. 

Learning objectives

At the end of this course, students will be able to:

  • Identify and explain the key differences between development and production images, and understand the security implications of using each variant.
  • Retrieve a Chainguard Image's SBOM using the cosign command and understand the information provided in the SBOM, including license details and source code references.
  • Use the Tag History API to compare different builds of Chainguard Images and understand how to identify differences, such as added or removed vulnerabilities, between image versions.
  • Understand FIPS (Federal Information Processing Standards) and how to use FIPS-enabled versions of Chainguard Images to meet compliance requirements, including the use of FIPS-validated cryptography.
  • Use the chainctl command line interface tool to compare two Chainguard Images, identify added or removed vulnerabilities, and make informed decisions about image updates and deployments.

If you have any questions or comments, feel free to reach out at courses@chainguard.dev. 

Course Details

  • Developers; Software Professionals

  • <2h

  • 9 Lessons

DUMMY TEXT DO NOT EDIT PLZ

Curriculum

  • Differences Between Development and Production Images
  • How to Retrieve an Image's SBOM
  • How to Compare Images With chainctl diff
  • How to use the Tag History API
  • How to Debug Chainguard Images
  • How to use Chainguard Images going forward (1 week, 1 month, 1 year)
  • Multi-stage Builds
  • FIPS Images
  • Packages Overview
Course

Learn the tools and fundamentals of vulnerability management and why it's critical that every developer understand it.

Course

Learn the tools and fundamentals of vulnerability management and why it's critical that every developer understand it.