-Content by TechnologyNewswire-
Minimus today announced the general availability of two new capabilities that help organisations secure software dependencies and manage custom container images as code: Minimus Supply Chain Protection and minicli.
Minimus Supply Chain Protection addresses the challenge of securely using the tens of millions of packages from the application package universe. These packages have thousands of interwoven dependencies, are often maintained by a single developer and are updated far less frequently than operating system packages. Existing approaches to secure these packages such as malware scanning and building from source are limited in coverage and scale given the size and complexity of the ecosystems.
Minimus Supply Chain Protection instead acts as a policy enforcement layer that sits between developers and public package repositories, allowing organisations to evaluate, control, and audit application dependencies before they are consumed by developers or CI/CD pipelines.
A risk score for each package is assembled through an evaluation of package metadata, including commits, popularity, and use of a cooling-off period. Minimus provides default policies based on these risk factors, while exposing the underlying controls for teams that want to configure their own thresholds, allowlists and blocklists.
More from News
- The Highest-Paying Jobs You Can Get Without A Degree In 2026
- VivaTech Is Taking Over The Champs-Élysées – And It’s Free For Everyone
- From Workouts To Managing Jetlag: The British Tech Scale-Up That Just Hit One Million Users Globally Appoints New CEO
- Hackers Tricked Instagram’s AI To Leak Your Log In Details – How Can Users Stay Protected?
- New Research Reveals The UK’s Top 10 “Future-Ready” Cities
- New Research Shows How Elections Are Impacting The Job Market – Here’s How
- Is London Becoming The World’s Next AI Capital?
- Google’s AI Can’t Even Spell “Google” – So Why Is It Replacing Search?
Implemented as a pull-through proxy for NPM and PyPI, Supply Chain Protection operates with no impact on the developer experience, while giving security and platform teams visibility into package usage and the ability to enforce package trust policies across environments.
Customers can build multiple configurations with varying risk tolerance for environments and teams with different security priorities. Supply Chain Protection is supported by Minimus Actions, allowing customers to be notified of policy violations with varying enforcement levels and severities. A full audit log of policies and their impacts is available in a unified view across the platform.
Minimus minicli allows Minimus customers to extend both the visibility of custom images to their own local terminals and manage the full recipe for those images as code. With minicli, customers can view and manage existing private images, inspect custom image structures including additional packages, file bundles, and environment variables, export and version-control image configurations as YAML files, and trigger and monitor new image builds.
This enables teams to integrate image management into existing Git-based workflows and CI/CD pipelines, bringing the same automation and change control used for application and infrastructure code to custom container images. minicli is available to download publicly via API for macOS and Linux on amd and arm platforms.
-This is a paid press release published via TechnologyNewswire-
