Actions
Proactively respond to security updates for your Minimus images with Minimus actions
This feature is available for organizational accounts. Learn more
Minimus actions help you effortlessly keep up with security updates related to your Minimus images. Set up Minimus actions to trigger alerts for new image versions and security updates. Actions are used to notify teams as soon as a new version and/or a security fix is released.
Keeping up with security patching can be intense unless you establish a reliable routine. While Minimus images will typically be clean of any vulnerabilities when you first deploy them, they will eventually accrue vulnerabilities and require updates for security reasons. Actions can notify you when fixes are released so that you can expedite testing and deploy version updates sooner.
Types of triggers
Actions boost your security posture by ensuring that you can respond proactively whenever:
-
A new image version is released.
You can add filters to alert on specific images or specific image lines. The alert is sent when a new image version is first released, but not for new digest IDs.
-
A vulnerability was fixed.
You can add filters to focus on active exploits, likely exploits, or CVSS severity.
In any case, you can opt to filter by FIPS, STIG, and/or image category as well.
Action types
Minimus supports several actions: webhooks, GitHub Actions, email notifications, and Slack alerts. Learn how to create actions
Recommended actions
We recommend triggering an action when a fix is published to a vulnerability labeled as an active exploit or likely exploit in an image line you are currently using.
- Active exploits are vulnerabilities known to be exploited in the wild that have been added to the CISA KEV catalog.
- Likely exploits are vulnerabilities with an extremely high EPSS score that are statistically likely targets for exploitation.
Actions list
You can search the list of actions by any attribute, including the action name, state, and trigger.
The table includes the following:
-
Action name
-
Trigger
-
Action (Webhook)
-
Enabled/Disabled state.
Hover over a line to toggle the state and disable or enable an action.
Edit an action
Hover over an action in the table and select the edit button (). You can edit all fields in the action form and save your changes.