Cerbos Versions Save

Cerbos 0.35.1

View the full release notes at https://docs.cerbos.dev/cerbos/latest/releases/v0.35.1.html

Changelog

Chores

• e5b322b4 chore(ci): Output signature from cosign (#2089)
• 0dfd4321 chore(release): Prepare release 0.35.1
• 4c9c159f chore(version): Bump version to 0.36.0

Cerbos 0.34.0

View the full release notes at https://docs.cerbos.dev/cerbos/latest/releases/v0.34.0.html

Changelog

Features

• 42e84420 feat: Better diagnostic error messages for policy issues (#1960)

Enhancements

• 36b0e6d6 enhancement(ci): Sign release artifacts (#1959)
• 5db9ab03 enhancement(ci): Validate Helm chart in CI (#1957)
• 90f198a2 enhancement: Better compilation errors (#1968)
• 707278ff enhancement: Detailed load errors in REPL (#1985)

Bug fixes

• 4f90a5c8 fix: Record HTTP remote address as peer address for HTTP requests (#1964)

Documentation

• 4afdc2f8 docs: Fix branch filter (#1958)

Chores

• 05ef26b9 chore(ci): Add correct permissions to snapshot job (#1962)
• f24bec2d chore(ci): Add cosign to snapshot build job (#1961)
• 8db98982 chore(ci): Fix workflow permissions (#1963)
• cfed07f9 chore(ci): Use master version of govulncheck (#1967)
• b89c2c78 chore(deps): Bump github.com/opencontainers/runc from 1.1.5 to 1.1.12 (#1971)
• 7918e5e9 chore(deps): Bump helm.sh/helm/v3 from 3.14.0 to 3.14.1 (#1986)
• 5cf243a1 chore(deps): Update actions/cache action to v4 (#1955)
• dc8cf7fb chore(deps): Update actions/setup-go action to v5 (#1990)
• 5574e85a chore(deps): Update github actions deps (#1973)
• e5107889 chore(deps): Update github actions deps (#1983)
• 58a915c3 chore(deps): Update go deps (#1954)
• e683b1d2 chore(deps): Update go deps (#1974)
• 9bc32263 chore(deps): Update go deps (#1984)
• f1510961 chore(deps): Update go deps (#1989)
• 0c095fcd chore(deps): Update module github.com/goreleaser/goreleaser to v1.24.0 [security] (#1976)
• 9cf901b4 chore(docs): Readme update (#1965)
• aad2e98a chore(docs): Readme update (#1966)
• e5c7beff chore(docs): Update header to have tabs for PDP and Hub (#1975)
• c9d468d8 chore(release): Add 0.34.0 release notes (#1991)
• 8534c799 chore(release): Prepare release 0.34.0
• 563bec15 chore(version): Bump version to 0.34.0
• e4ebc884 chore: Add JSON test cases for parser (#1952)
• 0dd8dadb chore: Add ability to parse well-known types (#1972)
• c253d87e chore: Copy metadata to runtime policies (#1981)
• bc84737e chore: Handle invalid YAML files containing unterminated strings (#1970)
• b10b1391 chore: Move compiled policies annotations to *PolicySet (#1988)
• 47984534 chore: Reduce Docker healthcheck interval (#1978)
• 03f95ec6 chore: Remove start-period from Docker health check (#1979)
• 353aa089 chore: Switch workspace mode off for vulnerability check (#1953)
• 199ae8df chore: Update test filtering logic (#1992)
• d022db1e chore: Use Go 1.22 (#1982)

Cerbos 0.33.0

View the full release notes at https://docs.cerbos.dev/cerbos/latest/releases/v0.33.0.html

Changelog

Features

• 323bbf2c feat: Add audit call ID to API responses (#1911)
• f6b9d06b feat: Produce output if condition fails (#1932)
• e66df409 feat: Record policy source attributes in audit log (#1889)

Enhancements

• d2d7fe0b enhancement!: Drop support for tracing configuration block (#1898)
• a594f903 enhancement!: Remove deprecated client package (#1904)
• 8226beb8 enhancement(helm): Add podLabels to the chart (#1912)
• af85ff2d enhancement: Add Admin API update timestamp to policy (#1903)
• ddcc3413 enhancement: Configurable database connection retries (#1926)
• 66e01b85 enhancement: Pass all HTTP headers through unmodified from gRPC-Gateway (#1934)

Bug fixes

• 3ace1373 fix(planner): Query planner doesn't use stable time (#1949)
• 89dcf2c9 fix(planner): Query planner must (pre)evaluate expressions with resource kind (#1921)
• 63523652 fix: Don't forward connection-specific headers via gRPC-Gateway (#1938)
• cb065450 fix: Restore User-Agent header aliasing (#1941)

Documentation

• 2db232f0 chore: Revert "docs: Fix image URLs (#1943)" (#1951)
• cfa36efa docs: Add policy variable examples (#1940)
• 5072b931 docs: Fix image URLs (#1943)
• 4194f6e8 docs: Fix incorrect policy rule in tutorial (#1930)
• 7affa69a docs: Remove older versions (#1942)

Chores

• b40cf5ab chore(deps): Bump github.com/cloudflare/circl from 1.3.3 to 1.3.7 (#1935)
• 015f51a4 chore(deps): Bump github.com/cloudflare/circl from 1.3.5 to 1.3.7 in /tools (#1936)
• d9d22e59 chore(deps): Bump github.com/go-git/go-git/v5 from 5.7.0 to 5.11.0 in /tools (#1925)
• d871844b chore(deps): Bump golang.org/x/crypto from 0.15.0 to 0.17.0 in /tools (#1916)
• 002b035d chore(deps): Downgrade github.com/chigopher/pathlib (#1924)
• e7d60147 chore(deps): Tidy dependencies (#1899)
• 24acf48f chore(deps): Tidy dependencies (#1907)
• 7c43413a chore(deps): Update actions/setup-go action to v5 (#1906)
• 7f098db4 chore(deps): Update github actions deps to v3 (major) (#1915)
• 5d2264b9 chore(deps): Update github actions deps to v4 (major) (#1923)
• 852cfffa chore(deps): Update go deps (#1896)
• 6a5f22b8 chore(deps): Update go deps (#1905)
• a939aa06 chore(deps): Update go deps (#1914)
• d79fa229 chore(deps): Update go deps (#1922)
• 73e1971b chore(deps): Update go deps (#1928)
• ca453c75 chore(deps): Update go deps (#1933)
• e128d4a6 chore(deps): Update go deps (#1950)
• 288e33c7 chore(deps): Update google-github-actions/auth action to v2 (#1897)
• 39b39be8 chore(deps): Update google-github-actions/setup-gcloud action to v2 (#1929)
• 9c6b6d91 chore(deps): Update module golang.org/x/crypto to v0.17.0 [security] (#1917)
• a45ddc21 chore(docs): Readme update (#1937)
• e94eab9a chore(release): Add 0.32.0 release notes (#1894)
• fdc3a82c chore(release): Add 0.33.0 release notes (#1948)
• 704728f5 chore(release): Prepare release 0.33.0
• 0551fc44 chore(test): Ignore source attributes in cerbosctl tests (#1908)
• cf9a44c5 chore(version): Bump version to 0.33.0
• cc90cd8d chore: Tag API module during release (#1909)
• 5fd68b25 chore: Update buf modules (#1902)
• 2de571bd chore: Update copyright header (#1931)
• 3027bc9c chore: YAML to Protobuf parser (#1939)

Cerbos 0.32.0

View the full release notes at https://docs.cerbos.dev/cerbos/latest/releases/v0.32.0.html

Changelog

Features

• ce425d92 feat!: Switch metrics to OpenTelemetry and add support for push metrics (#1887)
• 17224542 feat: Better support for OTLP (#1886)

Enhancements

• e87b5330 enhancement(ci): Mirror Cerbos image to Docker Hub (#1867)
• f2ff20dd enhancement: Detect and warn about invalid test suites (#1868)
• c055d13e enhancement: Include expected effect and outputs for successful tests (#1881)

Bug fixes

• 12354c3f fix: Ignore empty files in policy repository (#1882)

Documentation

• 5e254ae1 docs: Remove outdated playground section (#1864)

Chores

• c62c5623 chore(ci): Replace deprecated GoReleaser --skip-publish flag (#1893)
• 9fe252ad chore(deps): Bump github.com/sigstore/cosign/v2 from 2.0.3-0.20230523133326-0544abd8fc8a to 2.2.1 in /tools (#1869)
• da822490 chore(deps): Bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc from 0.45.0 to 0.46.0 (#1871)
• e0282814 chore(deps): Update amannn/action-semantic-pull-request action to v5.4.0 (#1862)
• fd30cacc chore(deps): Update bufbuild/buf-setup-action action to v1.28.0 (#1873)
• 72f67c3d chore(deps): Update github actions deps (#1884)
• ebb56d23 chore(deps): Update go deps (#1863)
• 46621085 chore(deps): Update go deps (#1874)
• d51d9c91 chore(deps): Update go deps (#1885)
• 23de7142 chore(deps): Update go deps (#1888)
• fef22d12 chore(release): Prepare release 0.32.0
• 8f52e1ef chore(test): Fix Kafka integration tests (#1878)
• 7a72711f chore(version): Bump version to 0.32.0
• 761a3dc5 chore: Access to check options from custom checkers (#1861)
• 16f081b7 chore: Add pre-cache API to TestFixtureGetter (#1866)
• cf21eb04 chore: Add tests to check fixture loading from testdata (#1877)
• eba4b3ff chore: Allow LoadTestFixture to continue on error (#1859)
• d51f597e chore: Enable Otel interceptor for grpc-gateway client (#1892)
• 3dc5ff84 chore: Fix legacy OTLP exporter initialization (#1891)
• 7dd5d0c8 chore: Simplify residual expression (#1876)
• 77e836e7 chore: Upgrade to CEL 0.18 (#1860)

Cerbos 0.31.0

View the full release notes at https://docs.cerbos.dev/cerbos/latest/releases/v0.31.0.html

Changelog

Features

• 3ec29307 feat!: Make runtime.effectiveDerivedRoles available in CEL expressions (#1778)
• 111c4a31 feat: Reload certificates when they change on disk (#1841)

Enhancements

• d4c39c9b enhancement(api): Separate Go module for API definitions (#1801)
• 0d63f1e3 enhancement(api): Use toolchain to manage Go version used (#1804)
• 56f7683c enhancement(helm): Add support for defining topology spread constraints (#1821)
• c8af11b1 enhancement(security)!: Configure gRPC max concurrent streams (#1853)
• 055e476f enhancement: Allow parsing JWTs with legacy keysets (#1823)
• 0624962e enhancement: Deprecate client package (#1815)
• 7123a672 enhancement: Expose Index interface from private (#1847)
• 21315fe4 enhancement: Expose private Check API (#1843)
• 90bd6cd1 enhancement: Lenient scope search in tests (#1838)
• dff2dcca enhancement: Migrate to protovalidate (#1800)

Bug fixes

• d135222d fix(docs): Correct link to resources test fixture schema (#1829)
• c6a158a7 fix(test): Fix resource kind in test (#1813)

Documentation

• 25ba5550 docs: Remove unstable warning from Admin API (#1835)
• 85e4eac5 docs: Update Neovim yamlls configuration section (#1824)

Chores

• ff152ce9 chore(deps): Bump github.com/docker/docker from 24.0.6+incompatible to 24.0.7+incompatible (#1856)
• 12dc45a7 chore(deps): Bump github.com/docker/docker from 24.0.6+incompatible to 24.0.7+incompatible in /tools (#1855)
• 4edc6d6d chore(deps): Bump golang.org/x/net from 0.15.0 to 0.17.0 in /api/genpb (#1830)
• e4946006 chore(deps): Bump golang.org/x/net from 0.15.0 to 0.17.0 in /tools (#1831)
• ab81d8eb chore(deps): Bump golang.org/x/net from 0.16.0 to 0.17.0 (#1833)
• f134903b chore(deps): Bump google.golang.org/grpc from 1.58.0 to 1.58.3 in /tools (#1848)
• 07079728 chore(deps): Update actions/checkout action to v4 (#1806)
• 01a6016d chore(deps): Update amannn/action-semantic-pull-request action to v5.3.0 (#1819)
• 58d29691 chore(deps): Update bufbuild/buf-lint-action action to v1.1.0 (#1840)
• ce03553d chore(deps): Update bufbuild/buf-setup-action action to v1.27.0 (#1827)
• 42e6e61c chore(deps): Update bufbuild/buf-setup-action action to v1.27.1 (#1844)
• 8fb00927 chore(deps): Update bufbuild/buf-setup-action action to v1.27.2 (#1851)
• ecb6b496 chore(deps): Update github actions deps to v3 (major) (#1807)
• f74ecf8c chore(deps): Update go deps (#1805)
• bba5a648 chore(deps): Update go deps (#1816)
• d2affcb1 chore(deps): Update go deps (#1818)
• e8aa1424 chore(deps): Update go deps (#1826)
• 49bfbe0b chore(deps): Update go deps (#1839)
• 1295185a chore(deps): Update go deps (#1845)
• 5f6b9388 chore(deps): Update go deps (#1852)
• 81f27450 chore(deps): Update goreleaser/goreleaser-action action to v5 (#1808)
• 4512ca70 chore(docs): Add link to Laravel SDK (#1810)
• 5bfdcbb9 chore(release): Add 0.31.0 release notes (#1849)
• 625bc0d0 chore(release): Prepare release 0.31.0
• 9bd85574 chore(version): Bump version to 0.31.0
• e16f1d39 chore: Drop replace directive for API module (#1802)
• a624bedb chore: Expose discovered test fixture paths (#1854)
• 41a2a066 chore: Remove coverage badge (#1811)
• a6728b15 chore: Remove ghz from tools deps (#1857)
• 7e6b062c chore: Rename Cerbos Cloud to Cerbos Hub (#1836)
• 97531624 chore: Set go.mod version to 1.21 (#1809)
• 341baa48 chore: Set go.work version to 1.21 (#1817)
• 8756210e chore: Update Buf modules (#1822)

Cerbos 0.30.0

View the full release notes at https://docs.cerbos.dev/cerbos/latest/releases/v0.30.0.html

Changelog

Features

• 304586b1 feat!: Check variable references at compile time (#1772)
• b9228f64 feat(client): Add options for intercepting gRPC operations (#1724)
• 24cb3e4f feat: Add cerbosctl command to export policies and schemas from store (#1686)
• 9652c909 feat: Audit log rotation support (#1766)

Enhancements

• 8fd1ac8c enhancement!: Use .cerbos.yaml as conventional name for config file (#1755)
• 5dce9a9f enhancement(helm): Add ability to set clusterIP (#1707)
• 3fbd95e3 enhancement(helm): Allow an image digest to be provided instead of a tag (#1735)
• 1f6ba2c0 enhancement: Better error messages from compile command (#1750)
• e2c7af04 enhancement: Clean-up store resources (#1749)
• 4e7d22c1 enhancement: Compile and run tests from an archive (#1721)
• 6582c701 enhancement: Configurable time skew for JWT validation (#1790)
• 1130d12f enhancement: Configuration to disable API explorer (#1767)
• 4d5d0c51 enhancement: Relax naming conventions for resource kinds, principals and roles (#1762)

Bug fixes

• 0b7a189f fix(docs): Typo in Calling Cerbos (#1726)
• 6b09c624 fix(planner): Lambda body can be a field selection (#1720)
• 91a0d48b fix: Evict policies from cache after disable or enable (#1711)
• a29a9926 fix: Ignore invalid expressions (#1799)
• 7bfa52af fix: Normalize Git store subdirectory config to handle leading ./ correctly (#1774)

Documentation

• c7c5f371 docs(sdk): Update SDK examples (#1731)
• 34f68599 docs: Add testdata schema URLs (#1779)
• eaaed3d0 docs: Caveats of sharing a DB with multiple instances (#1743)
• a8ad220a docs: Fix typo in 03_calling-cerbos.adoc (#1714)
• b6065122 docs: Remove deprecated endpoint/rpc (#1734)
• 4fbbe362 docs: Stop building docs for older versions (#1716)
• a2cf9c9a docs: Update examples for handling expressions beginning with quote (#1739)

Chores

• 4a690fd8 chore(ci): Always run upload-test-times after test (#1756)
• 2b7c99b4 chore(ci): Create PRs for Homebrew formula updates (#1704)
• 98de4026 chore(ci): Debug logging for server tests (#1791)
• 711844ab chore(ci): Increase timeout for client tests (#1793)
• bc1a4d5a chore(ci): Publish prerelease images tagged by commit hash (#1736)
• 5691a1b2 chore(ci): Split snapshots job (#1796)
• 2479397c chore(ci): Switch to Coveralls (#1751)
• b3c81ff0 chore(ci): Upload test coverage from snapshot builds (#1764)
• fdf5f2e7 chore(ci): Use experimental 'loopvar' released with Go 1.21 (#1738)
• 3738d7c8 chore(deps): Bump github.com/cyphar/filepath-securejoin from 0.2.3 to 0.2.4 in /tools (#1788)
• e7aff6ec chore(deps): Downgrade pterm to v0.12.66 (#1787)
• 81122c6a chore(deps): Update actions/checkout action to v4 (#1795)
• 0959bda6 chore(deps): Update bufbuild/buf-setup-action action to v1.25.0 (#1709)
• e4410cea chore(deps): Update bufbuild/buf-setup-action action to v1.25.1 (#1729)
• aa99210b chore(deps): Update bufbuild/buf-setup-action action to v1.26.0 (#1748)
• 2bae859e chore(deps): Update github actions deps (#1759)
• ac28478b chore(deps): Update go deps (#1708)
• cedf3580 chore(deps): Update go deps (#1718)
• 3d8dd138 chore(deps): Update go deps (#1730)
• 5b25738e chore(deps): Update go deps (#1747)
• 2f6605d4 chore(deps): Update go deps (#1760)
• d3994867 chore(deps): Update go deps (#1768)
• 53b0ab1e chore(deps): Update go deps (#1780)
• 0b8db178 chore(deps): Update go deps (#1794)
• 2200fcd0 chore(deps): Update go deps to v2 (major) (#1769)
• fc2f9bc3 chore(deps): Update helm release postgresql to v12.6.7 (#1681)
• 2d2bcfd9 chore(deps): Update module github.com/jdxcode/netrc to v1 (#1782)
• 29f1439c chore(deps): Upgrade gRPC middleware to v2 (#1786)
• 7e2ef076 chore(docs): Configure Cloud docs build (#1712)
• aba3b1df chore(docs): Ignore PlaygroundEnabled configuration flag (#1705)
• 15208f9d chore(e2e): Fix output path of the E2E coverage (#1757)
• 792daf7b chore(release): Add 0.30.0 release notes (#1792)
• 953433e1 chore(release): Prepare release 0.30.0
• a0165f34 chore(version): Bump version to 0.30.0
• 690d90ae chore: Mark auxData parameter as optional in OpenAPI spec (#1723)
• 9dd75f42 chore: Move gonum dependency into correct group (#1776)
• cc2d95d0 chore: Update Go to v1.20 (#1775)
• bfc0f3b0 chore: Upgrade to CEL 0.17 (#1717)

Cerbos 0.29.0

View the full release notes at https://docs.cerbos.dev/cerbos/latest/releases/v0.29.0.html

Changelog

Features

• beb3a656 feat: Add tls support kafka (#1667)
• 748b93cd feat: Allow reuse of variable definitions between policies (#1646)
• a527424c feat: Allow top-level $schema field in JSON files (#1676)
• fb98b74c feat: Introduce environment-specific global variables (#1645)
• 919245f4 feat: Lenient scope search (#1655)
• 49faf0a4 feat: Quit REPL when Ctrl-D is pressed on an empty prompt (#1674)

Enhancements

• cd72c0c9 enhancement(helm): Add config checksum to pod annotations so that deployment restarts on config changes (#1693)
• c1cfadce enhancement(sdk): Add getters for principal and resource ID fields (#1660)
• f21ecf7b enhancement: Add ListPolicies filtering ability to cerbosctl get (#1649)
• c2fcf279 enhancement: Add filtering in the ListPolicies RPC (#1642)

Bug fixes

• 210ccc30 fix: Fix overlay e2e test caused by troublesome bitnami postgres image (#1677)
• 2a86019e fix: Log request_id in the grpc "Handled request" log message (#1691)
• ad6928b1 fix: Obtain write lock while reloading index (#1659)

Chores

• 9454970d chore(ci): Disable cache of Go installation for GolangCI (#1662)
• ad008770 chore(ci): Don't use built-in caching in setup-go action (#1678)
• d2dbcd05 chore(ci): Downgrade telepresence (#1641)
• 646f234b chore(deps): Bump github.com/lestrrat-go/jwx/v2 from 2.0.9 to 2.0.11 (#1643)
• 5e328342 chore(deps): Update bufbuild/buf-setup-action action to v1.22.0 (#1665)
• 891c2112 chore(deps): Update bufbuild/buf-setup-action action to v1.23.1 (#1671)
• 92c6fece chore(deps): Update cloud-api to 0.1.4 (#1698)
• 3dbb7b15 chore(deps): Update github actions deps (#1652)
• 65c82364 chore(deps): Update github actions deps (#1697)
• dd5cd82b chore(deps): Update go deps (#1651)
• b0904d29 chore(deps): Update go deps (#1666)
• 07df282f chore(deps): Update go deps (#1672)
• 0c5fb886 chore(deps): Update go deps (#1680)
• c35feeb1 chore(deps): Update go deps (#1696)
• a7d5e37c chore(deps): Update module github.com/jackc/pgx/v4 to v5 (#1653)
• 79826d7e chore(e2e): Run govulncheck without verbose flag (#1675)
• 8a4f6a67 chore(release): Add 0.29.0 release notes (#1699)
• ddba2c49 chore(release): Prepare release 0.29.0
• 44c7afaf chore(test): Add E2E test for lenient scopes (#1657)
• 37762a80 chore(version): Bump version to 0.29.0
• 4600eb2d chore: Add parentheses after the function name getSeconds (#1684)

Cerbos 0.28.0

View the full release notes at https://docs.cerbos.dev/cerbos/latest/releases/v0.28.0.html

Changelog

Features

• 1f0a4d56 feat: Ability to verify outputs in policy tests (#1634)
• 9ae31dc4 feat: Support different compression algorithms for kafka audit (#1636)

Bug fixes

• 59254459 fix: Only produce outputs for activated rules (#1631)
• 11fb4def fix: Render the condition correctly in an Engine trace (#1637)

Chores

• 94b1de33 chore(release): Add 0.28.0 release notes (#1639)
• 36093bcb chore(release): Prepare release 0.28.0
• 669c33ec chore(test): Remove manual setup from overlay E2E test (#1633)
• a6fba655 chore(version): Bump version to 0.28.0
• c823d984 chore: Add output support to Playground API (#1632)

Cerbos 0.27.0

View the full release notes at https://docs.cerbos.dev/cerbos/latest/releases/v0.27.0.html

Changelog

Features

• d0b3f79b feat: Storage overlay (#1560)
• 0ce1346a feat: User-defined output from policy evaluation (#1594)
• 7570df33 feat: Validate policy and test files with JSON schema (#1526)

Enhancements

• ded521cb enhancement(helm): Allow LoadBalancerIP to be set (#1605)
• 41a17538 enhancement(helm): Upgrade to HPA v2 API (#1548)
• 620f980c enhancement(helm): Volume mounts for Cerbos Cloud (#1547)
• 7220e091 enhancement(sdk): Add support for user-defined outputs (#1620)
• 60ff224d enhancement: Add CEL math extension (#1569)
• 6a243718 enhancement: Handle schemas folder being in wrong place with more verbose error (#1550)
• b20c1828 enhancement: Verify required tables are present in the db (#1584)

Bug fixes

• 3b64da7f fix: Add helmfile init step to e2e GH actions setup (#1583)
• 7870db5a fix: Give Overlay interface precendence in storage switch on server startup (#1573)
• 6af9d526 fix: Introduce custom temp directory creation function with pathname length limit for uds (#1541)
• 8f660683 fix: Mark /tmp as a container volume (#1546)
• ad1c4604 fix: Return correct error code when store is invalid (#1592)
• 0f78104c fix: Update e2e overlay test seed file with newly added output data (#1611)
• b49d27d0 fix: Use IncludeMetadata option on all gRPC requests (#1586)

Documentation

• fc5ea9b0 docs: Add page with output example (#1622)
• 562dfee6 docs: Clarify policy repository layout (#1551)
• cb892e7c docs: Fix typo in charAt example (#1606)

Chores

• 85e5d7ad chore(ci): Disable automatic label updates (#1544)
• b9382cfc chore(ci): Fix data race in store test (#1537)
• 4029bd2a chore(ci): Update Renovate labels (#1565)
• c8d2d205 chore(deps): Bump github.com/cloudflare/circl from 1.1.0 to 1.3.3 (#1577)
• dcc269dd chore(deps): Bump github.com/docker/distribution from 2.8.1+incompatible to 2.8.2+incompatible in /tools (#1578)
• 8eda6808 chore(deps): Bump github.com/goreleaser/nfpm/v2 from 2.28.0 to 2.29.0 in /tools (#1599)
• ee53b220 chore(deps): Bump github.com/sigstore/rekor from 1.0.1 to 1.1.1 in /tools (#1563)
• a709152d chore(deps): Bump github.com/sigstore/rekor from 1.1.1 to 1.2.0 in /tools (#1600)
• 1b30b4c7 chore(deps): Update Antora to 3.1.2 (#1575)
• 5aca50e7 chore(deps): Update bufbuild/buf-setup-action action to v1.18.0 (#1567)
• 26f25790 chore(deps): Update github actions deps (#1597)
• b00915b8 chore(deps): Update github actions deps (#1625)
• 6d06a49e chore(deps): Update go deps (#1553)
• 5c51c4c7 chore(deps): Update go deps (#1556)
• 71d6d680 chore(deps): Update go deps (#1568)
• 20826305 chore(deps): Update go deps (#1581)
• b6ee7591 chore(deps): Update go deps (#1596)
• f750c1ae chore(deps): Update go deps (#1624)
• e900c621 chore(deps): Update google-github-actions/setup-gcloud action to v1.1.1 (#1582)
• c4b3ed1b chore(deps): Update module github.com/envoyproxy/protoc-gen-validate to v1 (#1557)
• c51804d9 chore(docs): Add paths to test schema files (#1564)
• f36cdee5 chore(docs): Fix referencing non-existent format flag (#1617)
• 4e2999e0 chore(release): Add v0.27.0 release notes (#1628)
• 5137c911 chore(release): Prepare release 0.27.0
• d82d66ef chore(test): Overlay e2e test (#1579)
• 16d8656e chore(version): Bump version to 0.27.0
• 9c12c4f2 chore: Add bundle driver info to telemetry (#1545)
• 294e5bfb chore: Change Cloud API version to api.cerbos.cloud/v1 (#1559)
• cac7569a chore: Remove the cerbos prefix from output keys (#1614)
• 1d26a974 chore: Update to go 1.19 (#1543)

Cerbos 0.26.0

View the full release notes at https://docs.cerbos.dev/cerbos/latest/releases/v0.26.0.html

Changelog

Features

• a38efe6d feat: Add JUnit output format for test results (#1508)
• 52f0daf2 feat: Cerbos Cloud bundle store driver (#1530)
• 4a440e92 feat: Kafka audit log (#1499)

Enhancements

• 06c514da enhancement!: Group test results by test name (#1498)
• 1a949a13 enhancement!: Make config flag optional (#1462)
• 138a1cd9 enhancement: Add includeDisabled to Admin API and schema deletion to cerbosctl (#1463)
• a5c1dc34 enhancement: Add principal, resource and action as properties of JUnit output (#1520)
• f38a10ea enhancement: Add support for reading archive files for the disk driver (#1473)
• a5c6b106 enhancement: Audit error metric (#1513)
• ad0dbb2f enhancement: Enable auth on API explorer page (#1464)
• 22fff65a enhancement: Enable disabled policies (#1472)
• eb0d3dac enhancement: Report audit close error (#1501)

Bug fixes

• b6fdc81f fix: Fix passing tests not being visible in JUnit test output (#1534)
• f40a8a8c fix: Kafka async produce context cancellation (#1516)
• a9e540df fix: Kafka async publish fails when the API request returns (#1510)
• b6756b07 fix: Prevent default config from being turned into a path (#1533)

Documentation

• 4fddbfb8 docs: Add Kafka audit backend docs (#1506)
• 80e73601 docs: Add resource ID to test examples (#1488)
• e5dbcb53 docs: Document /api/server_info (#1469)
• 27a22119 docs: Document CEL string.format function (#1528)
• 397d6264 docs: Fix README snapshot.yml badge (#1497)
• 53c6a412 docs: Fix name of test output format flag (#1481)
• a1a61435 docs: Fix typo in 04_testing-policies.adoc (#1477)

Chores

• 5fa93905 chore(api): Remove api/x/plan/resources endpoint (#1471)
• 92725a97 chore(ci): Add timeouts to workflows (#1505)
• 7507b683 chore(ci): Increase snapshot build timeout (#1509)
• 52d990c8 chore(deps): Bump github.com/docker/docker from 20.10.23+incompatible to 20.10.24+incompatible (#1517)
• 58315563 chore(deps): Bump github.com/docker/docker from 23.0.2+incompatible to 23.0.3+incompatible in /tools (#1518)
• f2a2b8f7 chore(deps): Bump github.com/opencontainers/runc from 1.1.2 to 1.1.5 (#1507)
• 682f41b4 chore(deps): Bump golang.org/x/net from 0.5.0 to 0.7.0 (#1465)
• bf08b735 chore(deps): Bump golang.org/x/net from 0.5.0 to 0.7.0 in /tools (#1466)
• dcaf942f chore(deps): Update bufbuild/buf-setup-action action to v1.15.0 (#1484)
• 215c4eed chore(deps): Update bufbuild/buf-setup-action action to v1.16.0 (#1512)
• c11163b4 chore(deps): Update bufbuild/buf-setup-action action to v1.17.0 (#1522)
• f19a9f37 chore(deps): Update github actions deps (#1475)
• 19e7e0b4 chore(deps): Update github actions deps (#1494)
• bd60c15b chore(deps): Update github actions deps to v4 (major) (#1495)
• a72e7525 chore(deps): Update go deps (#1474)
• bbc795d2 chore(deps): Update go deps (#1483)
• 54beb34d chore(deps): Update go deps (#1493)
• 072810a0 chore(deps): Update go deps (#1502)
• 72225933 chore(deps): Update go deps (#1511)
• df020fbe chore(deps): Update go deps (#1521)
• ada36c1a chore(deps): Update module github.com/dgraph-io/badger/v3 to v4 (#1503)
• 08474cd1 chore(release): Add 0.26.0 release notes (#1532)
• 7b6638f5 chore(release): Prepare release 0.26.0
• 936b2e35 chore(version): Bump version to 0.26.0
• 6a400732 chore: Deprecate old policy disable endpoint (#1476)
• 80072f5f chore: Ignore stdout/stderr sync errors in audit log (#1515)
• 2e3fd4e3 chore: Make Otel resource schemaless (#1487)
• b81b2185 chore: Publish unstable API to BSR (#1531)
• 62244d2e chore: Remove Playground from API explorer (#1467)