Hi everyone, my name is Ben Bernstein, and I'm the CEO and co-founder of Minimus. I want to tell you a little bit more about Minimus—what it is, why we built it, and how it helps.
Minimus is a security platform focused on giving you what I think is the most important thing in life: time.
Today, almost every company is a software company. When you're building software, you're not writing everything from scratch. You're taking what I’d call artifacts from the internet—pieces of code written by others—and reusing them to move faster. These are often the most cutting-edge tools available, and they help you release quickly. That part is great.
But after you ship your software, those artifacts often come back with a vengeance.
You end up spending a lot of time dealing with software vulnerabilities—figuring out which ones actually matter and which ones you can ignore. That’s where the real cost shows up: in time lost post-release.
At Minimus, we fundamentally change the contract between the security team and the development team.
Every few hours, we scan the internet for new artifacts. When we find them, we automatically apply the latest security patches and create new, secure artifacts for your team to use. These artifacts are minimal by design—so they’re naturally more secure—and they include all the latest security updates straight from upstream sources.
When you use Minimus' secure artifacts, even if you’ve already shipped your software, you see up to 95% fewer vulnerabilities. That means you get 95% of your time back.
But Minimus doesn’t stop there. Since our platform understands your software intimately, it also uses threat intelligence feeds to analyze any remaining vulnerabilities. It shows you which ones are actually relevant to your application and which ones you can safely deprioritize.
This is critical. Because the goal isn’t just fewer CVEs—it’s knowing which ones matter.
Minimus isn’t just for developers and DevOps teams. We built it to be equally valuable—and usable—for security teams.
It’s the same approach we took with Twistlock. If you’re not familiar, the team behind Minimus also built Twistlock, one of the first and most successful cloud workload protection platforms (CWPP). We designed Twistlock to be developer and DevOps friendly, but also bulletproof from a security perspective when the security team came into the room.
We’re doing the same thing again with Minimus—building a platform that’s deeply technical, easy to adopt, and secure by design.
Back when we built Twistlock in 2015, customers were thrilled to finally get visibility into their environments. They could see all their security artifacts and every vulnerability. But over time, that excitement turned to frustration.
They’d say: “Now that we see all these issues, what can we do about them?”
Minimus is our answer to that question.
It’s our take on solving the hundreds—sometimes thousands—of security issues that come bundled into modern software artifacts. We’re not just surfacing problems. We’re reducing them, at the source.
I’m incredibly proud of what our team has built.
If you’re building software—and especially if you’re tired of chasing endless vulnerability reports—I encourage you to try Minimus for yourself.
We built it to give you your time back. Let us know what you think.
