AI agents have stayed at the center of almost every authorization conversation we have had, and the focus has sharpened. The question is no longer whether agents introduce risk, it is how teams govern them in production without slowing anything down.
A human in accounts payable would never wander into the compliance database. An AI agent with the same role-level permissions will, and as Replit showed, even when asked not to it can still delete the database anyway in 9 seconds. Our AI security overview lays out why agents are not creating new security problems, they are exposing the authorization gaps that already existed, just at machine speed, and what governing them properly looks like. On the same theme, we covered the blind spot in non-human identity management, and recapped IIW42, where agent authorization stopped being theory.
For teams actively building, we shipped a Claude agent skill for writing authorization policies, a practical guide to writing, testing, and validating policies with AI help, and a new Cerbos PDP release (v0.52.0/v0.53.0) with engine performance work, security hardening, and CEL path functions.
Customer spotlight: BarrierSystems
BarrierSystems builds smart vehicle access gate systems. With Cerbos managing their access policies, they cut authorization-related support tickets by 75% and internal costs by 15%, while shipping new features faster.
Versions v0.52.0/v0.53.0 of Cerbos PDP focus on the parts of the PDP that don't usually make headlines but matter every time a request hits the engine: faster decision generation, tighter security around JWT handling, and a handful of bug fixes that close out long-standing edge cases.
v0.52.0 lands engine performance work and new CEL path functions, while v0.53.0 hardens the JWT verification flow and resolves a query plan regression introduced in v0.50.
IAM gaps remain one of the most common root causes of breaches, and most teams don't have a clear picture of where they stand.
This checklist is a practical, priority-ranked assessment of the IAM controls that matter most in 2026, built from what we've learned working with enterprise security teams, industry experts, and leading identity events including Gartner IAM, Identiverse, and EIC.
Upcoming Events
Visit our booth at:
EIC, Berlin, May 19-23. Stop by the Cerbos candy bar on level C for a chat! Cerbos' CPO and co-founder, Alex Olivier, will be on two panels worth blocking time for:
Identiverse, Las Vegas, June 15-18. Stop by the Cerbos booth 925 for a proper chat about all things authorization. Three sessions to add to your schedule:
Meet our team members and check out their talks to get valuable insights:
WeAreDevelopers World Congress, Berlin, July 8-10. Drop by Alex’s talk “The day the chatbot asked for sudo” if you are anywhere near AI security work right now.
Stay connected
Struggling with fragmented authorization or audit readiness? Talk to our solution team → Book a free workshop
Learn more about Cerbos Hub, a complete authorization management system for authoring, testing and deploying policy
You are receiving this email because either we have met, chatted, or you've visited our websitecerbos.devand asked us to keep you up-to-date. If you have been forwarded this email, you cansubscribeand receive future updates directly from us. If you prefer not to receive these updates, you can unsubscribe below, but we hope you stay!
-1.png?upscale=true&width=1200&upscale=true&name=cerbos-newsletter-banner-2024%20(14)-1.png)
