https://twitter.com/cerbosdev/status/1630538304427835392 Did you know you can supercharge your policy rules with self-service custom roles using Cerbos? We've got you covered in this blog written by Sam Lock: https://t.co/Ig7Gp1I3vc #customroles #authorization #Cerbos Twitter

https://twitter.com/cerbosdev/status/1631625469593255936 It's always great when you can free the development team to focus on the business logic. Cerbos allows you to implement an authorization mechanism as a global shared provider. Read more about how to do that here: https://t.co/iSveGIWEWs #authorization #Cerbos Twitter

https://twitter.com/cerbosdev/status/1631654474824515587 Choosing the right architectural style is critical when building an IT infrastructure 🤔 #REST or #gRPC? REST: ✅simple ❌can lack consistency gRPC: ✅powerful ❌complex Which one to choose? Find out here: https://t.co/CvBnNG43xF #cerbos #authorization @TechBullion Twitter

https://twitter.com/cerbosdev/status/1632770529948999681 Let's discuss service-to-service authorization & how to do it right ✅ Let’s start with non-user principals. They are identities that you tie to objects: servers and microservices. Why would you want to do that? #cerbos #authorization #SaaS #enterprise #scale https://t.co/7ENWz57lPZ Twitter

https://twitter.com/cerbosdev/status/1633111464151056386 Reduce latency & ensure security with Cerbos Cerbos requires no cloud service or any external dependancies of any kind: https://t.co/i29RFIT68K #cerbos #authorization https://t.co/5DttOQRlDj Twitter

https://twitter.com/cerbosdev/status/1633425434405642243 Happy 2nd birthday Cerbos! 🎉🎂 2 years ago, we launched with the mission to make authZ simpler to implement and manage & free up product teams to focus on building their core product. Thank you to our amazing community for helping us grow and improve! #Cerbos Twitter

https://twitter.com/cerbosdev/status/1633876020519653376 📣 Check out the latest updates from Cerbos in our monthly newsletter! https://cerbos.dev/subscribe#Past%20Issues ✅ Cerbos anniversary ✅ upcoming launch of Cerbos Cloud ✅ @nextjs + @prisma integration ✅ @remix_run integration ✅ webinars the Cerbos team was on ✅ and more #cerbosnewsletter https://t.co/K0jeR0CeGH Twitter

https://twitter.com/cerbosdev/status/1634178375940964355 Struggling with the complexity of modern software? ⭐Decoupling components can be the solution you need Learn how it can help with performance, cost optimization & feature development. Details here: https://t.co/oy6Jgg1WBE #softwaredevelopment #decoupling #authorization #Cerbos Twitter

Release - v0.26.0 New release published by github-actions[bot] Cerbos 0.26.0 View the full release notes at https://docs.cerbos.dev/cerbos/latest/releases/v0.26.0.html Changelog Features • a38efe6 feat: Add JUnit output format for test results (#1508) • 52f0daf feat: Cerbos Cloud bundle store driver (#1530) • 4a440e9 feat: Kafka audit log (#1499) Enhancements • 06c514d enhancement!: Group test results by test name (#1498) • 1a949a1 enhancement!: Make config flag optional (#1462) • 138a1cd enhancement: Add includeDisabled to Admin API and schema deletion to cerbosctl (#1463) • a5c1dc3 enhancement: Add principal, resource and action as properties of JUnit output (#1520) • f38a10e enhancement: Add support for reading archive files for the disk driver (#1473) • a5c6b10 enhancement: Audit error metric (#1513) • ad0dbb2 enhancement: Enable auth on API explorer page (#1464) • 22fff65 enhancement: Enable disabled policies (#1472) • eb0d3da enhancement: Report audit close error (#1501) Bug fixes • b6fdc81 fix: Fix passing tests not being visible in JUnit test output (#1534) • f40a8a8 fix: Kafka async produce context cancellation (#1516) • a9e540d fix: Kafka async publish fails when the API request returns (#1510) • b6756b0 fix: Prevent default config from being turned into a path (#1533) Documentation • 4fddbfb docs: Add Kafka audit backend docs (#1506) • 80e7360 docs: Add resource ID to test examples (#1488) • e5dbcb5 docs: Document /api/server_info (#1469) • 27a2211 docs: Document CEL string.format function (#1528) • 397d626 docs: Fix README snapshot.yml badge (#1497) • 53c6a41 docs: Fix name of test output format flag (#1481) • a1a6143 docs: Fix typo in 04_testing-policies.adoc (#1477) Chores • 5fa9390 chore(api): Remove api/x/plan/resources endpoint (#1471) • 92725a9 chore(ci): Add timeouts to workflows (#1505) • 7507b68 chore(ci): Increase snapshot build timeout (#1509) • 52d990c chore(deps): Bump github.com/docker/docker from 20.10.23+incompatible to 20.10.24+incompatible (#1517) • 5831556 chore(deps): Bump github.com/docker/docker from 23.0.2+incompatible to 23.0.3+incompatible in /tools (#1518) • f2a2b8f chore(deps): Bump github.com/opencontainers/runc from 1.1.2 to 1.1.5 (#1507) • 682f41b chore(deps): Bump golang.org/x/net from 0.5.0 to 0.7.0 (#1465) • bf08b73 chore(deps): Bump golang.org/x/net from 0.5.0 to 0.7.0 in /tools (#1466) • dcaf942 chore(deps): Update bufbuild/buf-setup-action action to v1.15.0 (#1484) • 215c4ee chore(deps): Update bufbuild/buf-setup-action action to v1.16.0 (#1512) • c11163b chore(deps): Update bufbuild/buf-setup-action action to v1.17.0 (#1522) • f19a9f3 chore(deps): Update github actions deps (#1475) • 19e7e0b chore(deps): Update github actions deps (#1494) • bd60c15 chore(deps): Update github actions deps to v4 (major) (#1495) • a72e752 chore(deps): Update go deps (#1474) • bbc795d chore… cerbos/cerbos

We just released Cerbos 0.27.0 with support for user-defined outputs from policy evaluation and a new

overlay

storage driver for fault tolerance. Checkout the full release notes at https://docs.cerbos.dev/cerbos/latest/releases/v0.27.0.html

This channel will receive notifications from cerbos/cerbos for:

releases

A couple of hours ago we've released Cerbos v0.29.0. cerbie🎉 You can now define your variables in a dedicated file and import them into any of the other policies to reuse common values and expressions across your policy repo. Additionally, a new globals object is available to policies at runtime to read environment-specific values. For example, you might want to grant additional permissions to a role in your staging environment, without creating separate policy versions for different environments. There are some more interesting novelties. To see all the changes and read full release notes, check https://docs.cerbos.dev/cerbos/latest/releases/v0.29.0.html

RT @CivoCloud: Big thank you to @cerbosdev for being a Silver Sponsor for Navigate Europe 2023 and helping to make the event possible 💙 G…

RT @ThisDotMedia: 🔐 Ever get #Authentication and #Authorization mixed up? Think of it like a concert 🎵: Authentication is your ticket in, A…

Introducing #Mongoose #Adapter for #Cerbos Query Plans 🚀 Now, implementing result filtering based on policies is super easy. Simply pass the plan to the adapter & include the resulting conditions in the find method of your models🌟 🔗 https://t.co/8hCRQYwiv1 #Authorizationhttps://twitter.com/cerbosdev/status/1696450950641103036

RT @boxyhq: We want to express a huge thank you to each of the panelists of the "Future of Authorization" - discussion at the Developer-Fir…https://twitter.com/cerbosdev/status/1696451440355484081

@emre emphasizes data security as a startup's opportunity, not just a need 👉 https://t.co/Y8wXuuePFr 🔑 Embrace "zero trust": Verify all 🔑 Understand your processes & data 🔑 Use MFA, encryption & audits #DataSecurity #ZeroTrust #Cerbos #Authorizationhttps://twitter.com/cerbosdev/status/1696565140085264565

🚀 #Cerbos will be at #CivoNavigateEU, Booth 7! Facing authorization challenges? Stop by, let's chat. & Grab some Cerbos merch! 👕 Don't miss Alex's talk on "Modernizing #Authorization" on 5th Sept, 1415 1440BST. Dive deep into decoupled #ABAC 🛡️ #CivoNavigate @CivoCloud https://t.co/FaIEUQP7X2https://twitter.com/cerbosdev/status/1696847395596726408

RT @CivoCloud: Security is a hot topic this year at Navigate Europe with talks from Oliver Pinson-Roxburgh, @alexolivier, @rajeshmuthusamy,…https://twitter.com/cerbosdev/status/1696892100606841050

removed an integration from this channel: twitter

Welcome!

kam

joined #announcements.

@cerbosdev: ⚠️ Access Denied! ⚠️ Keep your authZ policies fine-tuned to protect sensitive information, simplify workflows, and safeguard against malicious activity. #Cerbos #Authorization

@cerbosdev: 🚀 Day 1 of #CivoNavigateEU! Visit #Cerbos at Booth 7. Need help with #authorization? Chat with us! & Grab exclusive Cerbos merch 👕Don't miss @alexolivier's talk today on "Modernizing Authorization" 1415 1440BST @ Queen Charlotte 🛡️@CivoCloud #ABAC @cerbosdev: @alexolivier @CivoCloud @alexolivier @fzn_sam

@cerbosdev: 🚀 THANK YOU to everyone who's visited us at Booth 👉 #7 👈 at #CivoNavigateEU so far! We're inspired by all the insightful conversations and the passion of the attendees.Keep the discussions coming; we're here and eager to connect 💬 😊 #Cerbos #Authorization @CivoCloud

@cerbosdev: 🚀 Having amazing conversations at #CivoNavigateEU! If you've yet to visit, swing by Booth 👉 #7 👈. Let's dive into authorization solutions tailored for your needs.@CivoCloud #Cerbos #Authorization @cerbosdev: Our mission❓ Streamline & empower the #authorization process, helping businesses adapt & thrive. 🔺 #Cerbos, the open-source authorization layer, addresses role & permission complexities in evolving apps, ensuring secure & adaptable management.#OpenSource #AdaptableBusiness @cerbosdev: 💡Inspired by @KelseyHightower's talk today. Valuable insights for juniors, open source's current state, & the idea of “resetting the game” with each new role (like the game Metro 😂). Eager for more talks & chats with you all!#CivoNavigateEU @CivoCloud @alexolivier @fzn_sam

@cerbosdev: 💡Inspired by @KelseyHightower 's talk today. Valuable insights for juniors, open source's current state, & the idea of “resetting the game” with each new role (like the game Metroid 😂). Eager for more talks & chats with you all! #CivoNavigateEU@CivoCloud @alexolivier @fzn_sam @cerbosdev: We have a spare ticket for #DevRelCon in London, Sept 7-8  🎟 that we'd like to give away to one of you, or your devrel team member 😊Please respond& let us know whether you’d be interested in the ticket. The first person who responds will get the ticket. @cerbosdev: P.S. Once we confirm the person who will be receiving the ticket, we will send you a private message asking for some additional information required for us to assign the ticket to this individual.

@cerbosdev: Why is the #Cerbos Query Plan API such a beneficial feature? Find out in our new blog post: #QueryPlan #Policies #Authorization

Release - v0.30.0 New release published by github-actions[bot] Cerbos 0.30.0 View the full release notes at https://docs.cerbos.dev/cerbos/latest/releases/v0.30.0.html Changelog Features • 304586b feat!: Check variable references at compile time (#1772) • b9228f6 feat(client): Add options for intercepting gRPC operations (#1724) • 24cb3e4 feat: Add cerbosctl command to export policies and schemas from store (#1686) • 9652c90 feat: Audit log rotation support (#1766) Enhancements • 8fd1ac8 enhancement!: Use

.cerbos.yaml

as conventional name for config file (#1755) • 5dce9a9 enhancement(helm): Add ability to set clusterIP (#1707) • 3fbd95e enhancement(helm): Allow an image digest to be provided instead of a tag (#1735) • 1f6ba2c enhancement: Better error messages from compile command (#1750) • e2c7af0 enhancement: Clean-up store resources (#1749) • 4e7d22c enhancement: Compile and run tests from an archive (#1721) • 6582c70 enhancement: Configurable time skew for JWT validation (#1790) • 1130d12 enhancement: Configuration to disable API explorer (#1767) • 4d5d0c5 enhancement: Relax naming conventions for resource kinds, principals and roles (#1762) Bug fixes • 0b7a189 fix(docs): Typo in Calling Cerbos (#1726) • 6b09c62 fix(planner): Lambda body can be a field selection (#1720) • 91a0d48 fix: Evict policies from cache after disable or enable (#1711) • a29a992 fix: Ignore invalid expressions (#1799) • 7bfa52a fix: Normalize Git store subdirectory config to handle leading

./

correctly (#1774) Documentation • c7c5f37 docs(sdk): Update SDK examples (#1731) • 34f6859 docs: Add testdata schema URLs (#1779) • eaaed3d docs: Caveats of sharing a DB with multiple instances (#1743) • a8ad220 docs: Fix typo in 03_calling-cerbos.adoc (#1714) • b606512 docs: Remove deprecated endpoint/rpc (#1734) • 4fbbe36 docs: Stop building docs for older versions (#1716) • a2cf9c9 docs: Update examples for handling expressions beginning with quote (#1739) Chores • 4a690fd chore(ci): Always run

upload-test-times

after

test

(#1756) • 2b7c99b chore(ci): Create PRs for Homebrew formula updates (#1704) • 98de402 chore(ci): Debug logging for server tests (#1791) • 711844a chore(ci): Increase timeout for client tests (#1793) • bc1a4d5 chore(ci): Publish prerelease images tagged by commit hash (#1736) • 5691a1b chore(ci): Split snapshots job (#1796) • 2479397 chore(ci): Switch to Coveralls (#1751) • b3c81ff chore(ci): Upload test coverage from snapshot builds (#1764) • fdf5f2e chore(ci): Use experimental 'loopvar' released with Go 1.21 (#1738) • 3738d7c chore(deps): Bump github.com/cyphar/filepath-securejoin from 0.2.3 to 0.2.4 in /tools (#1788) • e7aff6e chore(deps): Downgrade pterm to v0.12.66 (#1787) • 81122c6 chore(deps): Update actions/checkout action to v4 (#1795) • 0959bda chore(deps): Update bufbuild/buf-setup-action action to v1.25.0 (#1709) • e4410ce chore(deps): Update bufbuild/buf-setup-action action to v1.25.1 (<https://github.com/cerbos/cerbos/pu… cerbos/cerbos

Release - v0.31.0 New release published by github-actions[bot] Cerbos 0.31.0 View the full release notes at https://docs.cerbos.dev/cerbos/latest/releases/v0.31.0.html Changelog Features • 3ec2930 feat!: Make

runtime.effectiveDerivedRoles

available in CEL expressions (#1778) • 111c4a3 feat: Reload certificates when they change on disk (#1841) Enhancements • d4c39c9 enhancement(api): Separate Go module for API definitions (#1801) • 0d63f1e enhancement(api): Use toolchain to manage Go version used (#1804) • 56f7683 enhancement(helm): Add support for defining topology spread constraints (#1821) • c8af11b enhancement(security)!: Configure gRPC max concurrent streams (#1853) • 055e476 enhancement: Allow parsing JWTs with legacy keysets (#1823) • 0624962 enhancement: Deprecate client package (#1815) • 7123a67 enhancement: Expose Index interface from private (#1847) • 21315fe enhancement: Expose private Check API (#1843) • 90bd6cd enhancement: Lenient scope search in tests (#1838) • dff2dcc enhancement: Migrate to protovalidate (#1800) Bug fixes • d135222 fix(docs): Correct link to resources test fixture schema (#1829) • c6a158a fix(test): Fix resource kind in test (#1813) Documentation • 25ba555 docs: Remove unstable warning from Admin API (#1835) • 85e4eac docs: Update Neovim yamlls configuration section (#1824) Chores • ff152ce chore(deps): Bump github.com/docker/docker from 24.0.6+incompatible to 24.0.7+incompatible (#1856) • 12dc45a chore(deps): Bump github.com/docker/docker from 24.0.6+incompatible to 24.0.7+incompatible in /tools (#1855) • 4edc6d6 chore(deps): Bump golang.org/x/net from 0.15.0 to 0.17.0 in /api/genpb (#1830) • e494600 chore(deps): Bump golang.org/x/net from 0.15.0 to 0.17.0 in /tools (#1831) • ab81d8e chore(deps): Bump golang.org/x/net from 0.16.0 to 0.17.0 (#1833) • f134903 chore(deps): Bump google.golang.org/grpc from 1.58.0 to 1.58.3 in /tools (#1848) • 0707972 chore(deps): Update actions/checkout action to v4 (#1806) • 01a6016 chore(deps): Update amannn/action-semantic-pull-request action to v5.3.0 (#1819) • 58d2969 chore(deps): Update bufbuild/buf-lint-action action to v1.1.0 (#1840) • ce03553 chore(deps): Update bufbuild/buf-setup-action action to v1.27.0 (#1827) • 42e6e61 chore(deps): Update bufbuild/buf-setup-action action to v1.27.1 (#1844) • 8fb0092 chore(deps): Update bufbuild/buf-setup-action action to v1.27.2 (#1851) • ecb6b49 chore(deps): Update github actions deps to v3 (major) (#1807) • f74ecf8 chore(deps): Update go deps (#1805) • bba5a64 chore(deps): Update go deps (#1816) • d2affcb chore(deps): Update go deps (#1818) • e8aa142 chore(deps): Update go deps (#1826) • 49bfbe0 chore(deps): Update go deps (#1839) • 1295185 chore(deps): Update go deps (#1845) • 5f6b938 chore(deps): Update go deps (#1852) • 81f2745 chore(deps): Update goreleaser/goreleaser-action action to v5 (#1808) • 4512ca7 chore(docs): Add link to Laravel SDK (#1810) • <https://git… cerbos/cerbos

Release - v0.32.0 New release published by github-actions[bot] Cerbos 0.32.0 View the full release notes at https://docs.cerbos.dev/cerbos/latest/releases/v0.32.0.html Changelog Features • ce425d9 feat!: Switch metrics to OpenTelemetry and add support for push metrics (#1887) • 1722454 feat: Better support for OTLP (#1886) Enhancements • e87b533 enhancement(ci): Mirror Cerbos image to Docker Hub (#1867) • f2ff20d enhancement: Detect and warn about invalid test suites (#1868) • c055d13 enhancement: Include expected effect and outputs for successful tests (#1881) Bug fixes • 12354c3 fix: Ignore empty files in policy repository (#1882) Documentation • 5e254ae docs: Remove outdated playground section (#1864) Chores • c62c562 chore(ci): Replace deprecated GoReleaser

--skip-publish

flag (#1893) • 9fe252a chore(deps): Bump github.com/sigstore/cosign/v2 from 2.0.3-0.20230523133326-0544abd8fc8a to 2.2.1 in /tools (#1869) • da82249 chore(deps): Bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc from 0.45.0 to 0.46.0 (#1871) • e028281 chore(deps): Update amannn/action-semantic-pull-request action to v5.4.0 (#1862) • fd30cac chore(deps): Update bufbuild/buf-setup-action action to v1.28.0 (#1873) • 72f67c3 chore(deps): Update github actions deps (#1884) • ebb56d2 chore(deps): Update go deps (#1863) • 4662108 chore(deps): Update go deps (#1874) • d51d9c9 chore(deps): Update go deps (#1885) • 23de714 chore(deps): Update go deps (#1888) • fef22d1 chore(release): Prepare release 0.32.0 • 8f52e1e chore(test): Fix Kafka integration tests (#1878) • 7a72711 chore(version): Bump version to 0.32.0 • 761a3dc chore: Access to check options from custom checkers (#1861) • 16f081b chore: Add pre-cache API to TestFixtureGetter (#1866) • cf21eb0 chore: Add tests to check fixture loading from testdata (#1877) • eba4b3f chore: Allow LoadTestFixture to continue on error (#1859) • d51f597 chore: Enable Otel interceptor for grpc-gateway client (#1892) • 3dc5ff8 chore: Fix legacy OTLP exporter initialization (#1891) • 7dd5d0c chore: Simplify residual expression (#1876) • 77e836e chore: Upgrade to CEL 0.18 (#1860) cerbos/cerbos