Proactively respond to security updates related to your Minimus images using Minimus Actions
Minimus Actions help you effortlessly keep up with security updates related to your Minimus images - including private images created with Creator. You can set up Minimus Actions to trigger webhooks, GitHub Actions, and alerts for new image versions/digests, security updates, EOL notifications, and more.
Keeping up with security patching can be intense unless you establish a reliable routine. While Minimus images are typically clean of any vulnerabilities when you first deploy them, the images will eventually accrue vulnerabilities and require security updates on an ongoing basis. Minimus Actions notify you when fixes and other updates are available so that you can expedite testing and deploy version updates sooner. Learn more
Actions boost your security posture by ensuring that you can respond proactively whenever:
New image version/digest is released
New helm chart version released
Vulnerability fix is shipped
Image line nearing EOL
Image line reached EOL
EOL image was pulled
You can always add filters to alert on specific images or specific image lines, or filter by FIPS, STIG, and an image category. For vulnerability-related actions, you can also filter to focus on active exploits, likely exploits, or CVSS severity.
Suggestions for recommended actions are included to help you get started. As your first action, you can set up a Slack or email notification to trigger after a fix is released for active or likely exploits in an image line you are currently using.
Active exploits are vulnerabilities known to be exploited in the wild that have been added to the CISA KEV catalog.
Likely exploits are vulnerabilities with an extremely high EPSS score that are statistically likely targets for exploitation.
