Changelog
Recent features, improvements, and fixes — the latest first.
- New
The package catalog is now fully public
Packages is out of soft launch: the catalog is linked from the site menu and the footer, and its listing and package detail pages are now search-indexable. Browse versions, advisories, dependencies, and supply-chain scorecards for every package Minimal ships — no account needed.
- New
Browse every advisory in the catalog
A new
/pkgs/advisoriespage lists every security advisory affecting the catalog in one table — sortable by severity, affected package, or date, and filterable by severity. It pairs with the advisory feed for subscriptions and the catalog changelog for history. - New
Embed package score and advisory badges
Every package now has a badge you can drop into a README or wiki:
shows the package’s Minimal score, and?metric=advisoriesshows its active-advisory count. Both stay in sync with the latest catalog data. - Improved
Mistyped a package URL? The 404 page now suggests the right one
The not-found page got a terminal makeover, and a missed package path like
/pkgs/opnsslnow offers the closest real matches — one click away fromopenssl. - New
See what changed in the package catalog
A new catalog changelog at
/pkgs/changesshows what moved between catalog updates — packages added or removed, version bumps, and shifts in advisory counts — so you can track how the catalog evolves. - New
Keyboard navigation for the package catalog
You can now move through the package catalog without touching the mouse. Press
/to jump to search, usejandkto move between packages, and hit Enter to open the highlighted one. - Improved
Refreshed footer and Company page
The site footer has been redesigned and the Company page updated to match, making it easier to find your way around and get to know the team behind Minimal.
- New
API reference in the docs
The documentation now includes a human-readable API reference for the package endpoints, so you can browse what each route returns without reading the raw schema.
- New
Machine-readable package data for agents and integrations
The package catalog now speaks agent. An OpenAPI 3.1 description documents the
/api/pkgsendpoints,/llms.txtgives AI tools a map of the site, and every package page has a plain-markdown mirror at/pkgs/<name>.mdfor easy consumption by scripts and LLMs. - New
Subscribe to security advisories
Security advisories for catalog packages are now published as an Atom feed, so you can follow new disclosures in your feed reader or wire them into your own tooling.