Lightnews — Scholar-powered news

Minimus @minimus.io · 2d

Are you ready for the Cyber Resilience Act? By 2027, the EU’s CRA will require products with digital elements to:

✅ Be secure by design
✅ Stay patched for 5 years
✅ Include SBOMs + vuln disclosure
✅ Separate security & feature updates

Learn more:

The Cyber Resilience Act: What Open Source Users Should Know - Minimus

The Cyber Resilience Act shifts security responsibility to vendors. Learn how it impacts open source software use and how to reduce your risk.

buff.ly

Minimus @minimus.io · 4d

🎯 Start practicing your aim! We're shifting into gear for #KubeCon2025
Exploding brick walls not included, but yes...we're giving away another car.

#KubeCon #CloudNativeCon

Reposted by Minimus

The New Stack @thenewstack.io · 4d

Ready to upgrade your #KubeCon networking game? Join The New Stack, Blacksmith, @edera.dev, @minimus.io, @syntasso.io, and @tailscale.com for Night at the Aquarium, Nov 12 at the Georgia Aquarium.

🐳 It’s free, but space is limited → luma.com/940nj3xh

2 4

Minimus @minimus.io · 11d

Minimus users talking to folks still pulling public images:
“You guys are getting CVEs?” 🤔

#Minimus #ContainerSecurity #ApplicationSecurity #DevSecOps #Cybersecurity

1

Minimus @minimus.io · 13d

🔐✨🧩 Ever wonder what FIPS actually stands for, and why it matters for cryptography and compliance? Watch Minimus CTO John Morello break it down with Murugiah Souppaya (former NIST).

🎥 ⬇️ Full video linked in comments

1

Minimus @minimus.io · 13d

You heard it here from this very real person on this very real news show. Minimus images are drop-in replacements for Bitnami images.

Learn more: buff.ly/y76v2ae

#Minimus #ContainerSecurity

Minimus @minimus.io · 16d

🚦 In our latest blog post, Neil Carpenter breaks down how to use the Kyverno Admission Controller to enforce minimal, low-CVE base images in Kubernetes: buff.ly/UZdqMWn

Minimus @minimus.io · 18d

Stay compliant without the headaches. ✅
Minimus Compliance Dashboards give you clear visibility for CIS, FIPS, and STIG compliance across your environment, right down to the image level.
Learn more: buff.ly/ZvTX1Ua

#Minimus #ContainerSecurity #ApplicationSecurity #DevSecOps #Cybersecurity

1

Minimus @minimus.io · 23d

VEX reports can tell you whether or not a particular vulnerability affects your application. Minimus VEX support integrates this information directly into your workflow: buff.ly/Y9WeWCD

#Minimus #ContainerSecurity #ApplicationSecurity #DevSecOps #Cybersecurity #VEX

1

Minimus @minimus.io · 25d

🛠️ Deploy Kubernetes stacks faster. Minimus Helm Charts come pre-configured to work with Minimus' hardened images out of the box. Learn more: buff.ly/5W2d3tq

#minimus #cybersecurity #containersecurity #applicationsecurity #devsecops

2

Minimus @minimus.io · 27d

The hard part of custom images isn’t building them, it’s keeping them secure.

Our Image Creator lets you start from a hardened base, add what you need from 20k+ packages, and stay current with built-in security and updates: hubs.la/Q03Jx2C-0

Minimus @minimus.io · Sep 12

🔹 Large attack surface
🔹 CVE noise with little context
🔹 Proving supply chain integrity

👆 These are problems most security teams are familiar with. Here's how Minimus can help: hubs.la/Q03J6GCZ0

#ContainerSecurity #Compliance #DevSecOps #ApplicationSecurity

Minimus @minimus.io · Sep 11

Learn what FIPS is, why it matters for developers, and how to build and maintain FIPS-compliant containers in this post by @kat.lol : hubs.la/Q03H_81d0

#minimus #cybersecurity #containersecurity #applicationsecurity #devsecops #FIPS

FIPS Compliance for Containers: What Developers Need to Know - Minimus

Learn what FIPS is, why FIPS compliance matters for developers, and tips for building and maintaining FIPS-compliant containers.

hubs.la

1

Minimus @minimus.io · Sep 9

The amount of CVEs in your image matters, but so does how often new ones show up. That’s why we’re introducing a new metric, Mean Time to CVE (MTTC): hubs.la/Q03Hzcq10

#minimus #cybersecurity #containersecurity #applicationsecurity #devsecops

Minimus @minimus.io · Sep 4

Compliance doesn’t have to mean endless spreadsheets. 📊 Minimus makes CIS, FIPS, and STIG compliance simple.

Learn more: t.co/us5xkFeYwP

@neilcar.bsky.social #minimus #cybersecurity #containersecurity #applicationsecurity #devsecops #FIPS #compliance

2

Minimus @minimus.io · Sep 4

🔍🐛 Which open source vulnerability scanner fits your workflow best?

@kat.lol breaks down the key differences between popular open source scanners + using them with minimal container images: hubs.la/Q03GVwyY0

#minimus #cybersecurity #containersecurity #opensource #vulnerabilityscanning

Using Open Source Vulnerability Scanners With Minimal Images - Minimus

hubs.la

1 2

Minimus @minimus.io · Aug 28

#Bitnami is moving most images and Helm charts behind a paid tier.

If you're concerned about these changes, we're here to help. #Minimus offers secure, drop-in replacements and hardened Helm charts with 97% fewer vulnerabilities.

Learn more: hubs.la/Q03G0B9F0

#containersecurity #helmcharts

Navigating the Bitnami Pricing Changes - Minimus

Bitnami has moved most images and Helm charts behind a paywall. Learn what’s changing, how to navigate it, and explore Minimus as a drop-in alternative.

hubs.la

2 5

Minimus @minimus.io · Aug 27

🛠️ Minimus hardened Helm charts are already configured to use our images. Each chart has been tested so the components work easily together out of the box.

Learn more about our Helm charts: hubs.la/Q03FTR7-0

#minimus #cybersecurity #containersecurity #applicationsecurity #devsecops

1

Minimus @minimus.io · Aug 26

📍🌍 The Minimus team is at #OpenSourceSummit Europe! If you haven't had a chance, be sure to stop by the booth tomorrow to talk #ContainerSecurity with us.

#LinuxFoundation #minimus #cybersecurity #applicationsecurity #devsecops

1

Minimus @minimus.io · Aug 21

🍽️❤️ Cannibalism as a metaphor for love… and what that means for open source. If you missed it during Black Hat, Kat Cosgrove dug into cannibalism in pop culture and and why passion can sometimes eat projects alive. @kat.lol

📺 Watch the talk here: hubs.la/Q03DTWL90

2 4

Minimus @minimus.io · Aug 20

Neil Carpenter joined ASW to talk about why public base images contain more than you need, why the “patch everything” approach doesn’t work, and how minimal container images help with vulnerability management.

hubs.la/Q03DD2yc0

#minimus #cybersecurity #containersecurity #applicationsecurity

1 1

Minimus @minimus.io · Aug 13

🧊 🎩 Last week at Black Hat, Kat Cosgrove was on theCube to talk Kubernetes, open source security, and how minimal container images can cut vulnerabilities, costs, and complexity.

📺 Watch here: hubs.la/Q03CBgB_0

#ContainerSecurity #Kubernetes #DevSecOps #OpenSource #Minimus @kat.lol

Kat Cosgrove, Minimus | Black Hat 2025

Enjoy the videos and music you love, upload original content, and share it all with friends, family, and the world on YouTube.

hubs.la

4 11

Minimus @minimus.io · Aug 6

At Black Hat? Want to win a vacation? 🌞

Stop by Booth 4608 and grab a free Minimus shirt.
Wear it back Thursday at 1 PM for a chance to win. That’s it. ✈️

#minimus #blackhat #blackhat2025 #devcon #vegas

Minimus @minimus.io · Aug 6

🕵️‍♀️🧩 Limited run, only available at booth 4608. Can you guess what it is?

📍 Come by the booth today to find out! We have lots of fun Minimus merch, plus a chance to win an all-expenses-paid vacation.

#blackhat #blackhat2025 #minimus

A Minimus shirt with a pixelated graphic to hide the image on the shirt

Minimus @minimus.io · Jul 29

🎈 1️⃣2️⃣0️⃣0️⃣🎉 Celebrating 1000 - make that 1200 - Minimus users in our first 90 days!

#minimus #cybersecurity #containersecurity #applicationsecurity #devsecops

The Minimus team posing with 1000 spelled out in balloons - with a "2" taped over the first 0 to make it spell 1200

1