Cerbos PDP v0.38.1 Release Highlights: Policy Variables, SBOM Support, Improved Error Messages and Helm Updates

With the v0.38.1 release of Cerbos PDP, the policy version and scope of the resource and principal are now available for use in policy conditions through request.resource.policyVersion, request.resource.scope, request.principal.policyVersion and request.principal.scope.

The cerbos compile command now produces better error messages to help track down issues with missing scope policies.

In addition to signing the Cerbos release binaries and containers using Sigstore infrastructure, the release process now produces SBOMs to help trace the provenance of each Cerbos release.

The response from the InspectPolicies Admin API endpoint now includes principal and resource attributes referenced by the inspected policies. Note that this is currently only an API update, the SDKs and cerbosctl updates to interact with the API will follow soon.

The official Cerbos Helm chart now includes a values.schema.json file to help discover any configuration problems.

The documentation now includes a static version of the Cerbos OpenAPI specification. For the interactive version, launch a Cerbos PDP and navigate to http://localhost:3592.

You can find the full release notes for v0.38.1 on docs.cerbos.dev. If you have any questions - join our Slack community.