Your Cerbos update for October 2025

Since our last update, we have released Cerbos PDP v0.47.0, bringing native AWS Lambda support for serverless deployments, Git-aware Hub uploads for simplified policy versioning, and enhanced schema diagnostics for clearer and more actionable insights.

We published new resources to help teams strengthen their authorization strategy. These include a comprehensive guide on mapping business requirements to authorization policy for insurance, practical guidance on leveraging JWT claims in Cerbos, a deep dive into running Cerbos natively inside AWS Lambda, and a tutorial on how to automate policy uploads using the new cerbos-store-action GitHub action.

Beyond Cerbos specific content, we explored critical security and architecture topics. We shared insights from Alex Olivier’s DevDays Europe panel on modern application architecture trends including AI infrastructure challenges, examined how Zero Trust has reached operational reality for CISOs, highlighted key takeaways from ISC2 Congress 2025 on modern compliance, and outlined 10 critical challenges CISOs face in 2025 with practical solutions for each.

Product Updates

Cerbos PDP

Version v0.47.0 of Cerbos PDP, released on October 30th, adds native AWS Lambda support, tighter integration between Git and Cerbos Hub, and clearer schema diagnostics to simplify policy development and CI/CD pipelines.

If you already run Cerbos PDP in containers, Kubernetes, or sidecar mode, this update expands your deployment options and cuts time-to-diagnosis when policies misbehave.

You can find the full release notes here: v0.47.0

Cerbos PDP is open source, check out our GitHub

Helpful Content

[Ebook] Zero Trust for AI: Securing MCP Servers

MCP servers are now among the most privileged components in your AI stack.

They represent a fundamental new risk that traditional security controls weren't designed to address, requiring immediate attention from security, compliance, and risk management teams.

This ebook draws from our work with customers implementing AI systems and covers real incidents like the recent Supabase and Asana vulnerabilities.

Inside you will find:

How MCP servers fit into your broader risk management and compliance framework
Why MCP servers break the traditional chain of identity in enterprise systems
How Role-Based Access Control fails in dynamic AI environments
The externalized authorization architecture (PEP/PDP) that enables Zero Trust for AI systems
Authorization policies and deployment patterns to transform your MCP server from a “confused deputy” into a trusted co-pilot

Upcoming Events

Meet our team members and check out their talks to get valuable insights:

Alex Olivier, Cerbos’ CPO and Co-Founder, will be attending and speaking at Gartner IAM Summit in Grapevine, TX, December 8-10. Along with other members of OpenID AuthZEN, Alex will be covering the topic of “Extend Your Identity Providers with OpenID AuthZEN, Achieve Fine-Grained Authorization, and Enable Zero Trust.” If you stop by to listen to the panel - let us know what you think!

Stay connected

Join our Slack Community to keep up-to-date with latest developments
Let us help you build or review your first policy. Book a 30 minute free workshop
Cerbos PDP is open source, feel free to browse or contribute
Learn more about Cerbos Hub, a complete authorization management system for authoring, testing and deploying policy
Browse our developer documentation for Cerbos PDP and Cerbos Hub
Experience Cerbos and policy writing via an in-browser Playground

You are receiving this email because either we have met, chatted, or you've visited our website cerbos.dev and asked us to keep you up-to-date. If you have been forwarded this email, you can subscribe and receive future updates directly from us. If you prefer not to receive these updates, you can unsubscribe below, but we hope you stay!