Is there an embedded Cerbos SDK for when you want to avoid the network hop of a permission call? Say for latency-sensitive applications I get that it's targeted towards microservices/distributed architecture, where you implement a central service that every app can use vs embedding an SDK repeatedly, but was just curious

Right now Cerbos is a standalone service and we have found the network hop to be negligible, even in high-throughput cases, but this very much depends on the infrastructure. From personal experience running 100k+ QPS apps on kubernetes, the calls out to sidecars have never been the bottlenecks. That said, we have been looking at what it would take to be an embedded library but it is not something available now. What is your use case that requires this approach?

For sure -- if deploying to k8s I don't think it would be significant at all, like you mentioned Price of k8s is a bit high for personal/side projects though, so I usually go for Serverless Container stuff (Cloud Run/Fargate/AppRunner etc) and I don't know enough about DevOps to be sure if it would still be efficient between multiple services in those kinds of environments

I can speak to Cloud Run - if you make a call to another cloud run instance it is not going to leave the GCP network and is extremely low latency

I would assume it's the same for all similar services then -- okay sweet, thank you! Good to know, not really worried about it then = )