Learn how PNPM's minimumReleaseAge setting helps protect your project from compromised packages and improves supply chain security.

In version 10.16, PNPM introduced the minimumReleaseAge setting. This allows you to specify a minimum age that a published package must have before PNPM will install it. The idea behind delayed dependency updates is that most compromised packages are taken down quickly.