Exploitability label

Remediation due dates

CISA KEV

Minimus Documentation

A short introduction to Minimus explaining how Minimus images can radically reduce the amount of vulnerabilities that impact your cloud environment

Why Minimus

Understand how Minimus images are organized using versions and version lines

Image lines & versions

Image Lines & Versions

Unlock full access to pull any version by any tag

Image subscriptions

Image Subscriptions

Make the most of Minimus with an organizational account

Organizational account

Organizational Account

Dev images

Dev Images

Understand the Minimus pipeline for building secure packages and images

Architecture

Learn about your default privileges and upgrade options

Default Account

How to log into the Minimus registry to pull and verify images

Authentication

Authenticating to the Minimus Registry 

Browse the Minimus image gallery to discover your options and find the right image for your project.

Gallery

Explore the information for every type of image, including available image versions, versioned vulnerability reports, SBOM, and risk reduction comparison

Image Card

Dive into the image version for a detailed vulnerability report, digest history, SBOM, and detailed specification

Image Version Card

Recommendations for selecting the right image for your project

Selecting a version

FIPS

About STIG guidelines for enhanced security

STIG

Security Technical Implementation Guides (STIG)

Use Cosign to verify image signatures and SBOM attestations for Minimus images

Verifying Images & SBOMs

Learn how software integrity and trustworthiness can be ensured with the Sigstore toolchain

About Software Integrity

Understand what's included in the SBOM provided for every Minimus image version

About SBOMs

Trust Center

Minimus services status page provides updates on scheduled maintenance, outages, and other service-related events.

Status Page

Learn a a few simple tricks to get started with the Minimus Nginx image in Docker and Compose

Nginx Tutorial

Get started with the Minimus Nginx image in minikube

NGINX over K8S

Deploy NGINX over Kubernetes

How to deploy NGINX powered by Minimus as an Amazon Machine Image

NGINX AMI

How to build the most secure Go app using a multi-stage build with a runtime base image

Multi-stage Build with Go

How to check if the container has a shell

Is my container distroless?

Check if Your Container is Distroless

How to debug a Minimus container by mounting debug tools

Mount a Debugger

Using ephemeral containers to interactively troubleshoot Kubernetes production environments

Debug in Kubernetes

glibc

About image entrypoints in Minimus and how to work with them

Entrypoint

Image Entrypoint

Why Minimus containers usually default to an unprivileged user and how to work around user permissions

Default User

Understand how Minimus images help your team keep your cloud perimeter secure with less effort

Remediation

Accelerate Remediation with Minimus

Use Minimus threat intel to secure your operations against exploitable vulnerabilities impacting your Minimus images and get notified of fixed versions

Threat Intel

Evaluating vulnerability advisories for your images and their urgency

Prioritizing Vulnerabilities

About EPSS exploitability metrics in Minimus advisories

EPSS Exploitability Metrics

About CVSS severity classifications in Minimus advisories

CVSS Severity

Keeping up with vulnerability reports for your images

Advisories

Security Advisories

Drill down on a specific advisory to learn more about the risk and the affected packages

Advisory Drill-Down

Proactively respond to security updates for your Minimus images

Actions

User Management

Managing tokens for authentication to the Minimus Registry

Tokens

Ensure that your network can connect to Minimus

Network Requirements

Sync your Minimus images to your private registry

Self-hosted Registry

Configure single-sign-on (SSO) to Minimus using any SAML 2.0 identity provider

Configure SSO (Generic Guide)

Configure single-sign-on (SSO) to Minimus via Azure

Microsoft Azure SSO

Configure single-sign-on (SSO) to Minimus via Google

Google SSO

Configure single-sign-on (SSO) to Minimus via Okta

Remediate

Risk Assessment

Take Action

CISA KEV

Exploitability label

Remediation due dates

Remediate

Risk Assessment

Take Action

​Exploitability label

​Remediation due dates

Exploitability label

Remediation due dates