What's New?

Pomerium v0.28 is here, packed with major updates enhancing our Kubernetes integration, deployment flexibility, and security configurations across all editions. This release also includes significant performance optimizations and several critical bug fixes.

Downloads are available on GitHub Releases, CloudSmith, and Docker Hub for all supported platforms.

Major updates include:

• Support for Structured Authentication Configuration ( Kubernetes 1.30+) enabling secure kubectl and Kubernetes API access. Beyond basic Kubernetes RBAC, Pomerium brings the same centralized, context-aware authorization capabilities you love so you can manage your Kubernetes control plane like it was any other workload. For more details, visit our Kubernetes Access documentation.

• Our Ingress Controller now includes experimental support for the Kubernetes Gateway API, designed to streamline ingress configuration and enhance role-based resource management in complex Kubernetes environments. Supports Gateway API v1.2 "Core" features, with both "Gateway" and "HTTP" conformance profiles. We’re actively expanding Gateway API support and welcome your feedback to guide future improvements.

• Simplified Kubernetes Deployments with Helm and Kustomize. Our new Helm chart, alongside existing Kustomize manifests, enables quick and seamless integration into Kubernetes environments. Ready to get started? Check out our setup guide in our installs repo.

• Performance enhancements including faster header evaluation (2x faster than before) and more efficient route matching (unlocking tens of thousands of routes within a given cluster).

Please view the Core and Enterprise changelogs for more information.

Big thank you to all our users, and to everyone who contributed to this release!

Best,

The Pomerium Team

We're announcing a double patch upgrade this time! Pomerium v0.27.2 and v0.27.3 are here with various improvements, a new integration, and a Pomerium Zero import tool.

• OSS to Zero: The Core to Zero import tool is for those who want to bring an existing Pomerium configuration into Pomerium Zero, our hosted control plane.

• Need more routes? Upgrade with ease: For users interested in bringing Zero into their professional organizations, we now provide an easier process to upgrade to Professional!

• Squashed bugs and improvements: We fixed some bugs regarding the databroker and fixed a few behavioral issues. Several unused configuration options were also removed.

Pomerium v0.27.3 is an Enterprise-focused patch upgrade:

• Integrating devices: Our first mobile device management solution integration is FleetDM to support policy enforcement based on device state. Check out our FleetDM integration here.

• New: There is a new "Kubernetes Service Account Token File" route setting.

• Various improvements and fixes: We've improved handling of records and a few UI/UX fixes.

Please view the Core and Enterprise changelogs for more information.

Big thank you to all our users, and to everyone who contributed to this release!

Best,

The Pomerium Team

Pomerium v0.27.1 is here to address a security vulnerability and several bug fixes.

We fixed a security vulnerability affecting the internal API. This affected only Pomerium Enterprise and Pomerium Zero deployments utilizing service accounts.

Please view the Core and Enterprise changelogs for more information and make sure to address any necessary changes to your configuration before upgrading.

Big thank you to all our users, and to everyone who contributed to this release!

Pomerium v0.27 is here! This update brings new features to Enterprise and Core, in addition to officially announcing Pomerium Zero with its own updates. We've also made a slew of performance and stability improvements.

Please view the Core and Enterprise changelogs for more information and make sure to address any necessary changes to your configuration before upgrading.

For the full announcement post, read here!

Big thank you to all our users, and to everyone who contributed to this release!

Best,

Pomerium Team

Pomerium v0.26 is here with performance improvements and bug fixes!

This update focuses on bug fixes, performance, and stability improvements as well as policy builder enhancements for working with client certificates in Pomerium Enterprise. 

Please view the Core and Enterprise changelogs for more information and make sure to address any necessary changes to your configuration before upgrading.

Big thank you to all our users, and to everyone who contributed to this release!

Best,

Pomerium Team

Pomerium v0.25 is here! This is a performance and maintenance-focused upgrade to everyone’s favorite identity and context-aware proxy for clientless access.

Please view the Core and Console release notes for more information and make sure to address any necessary changes to your configuration before upgrading. The full list of changes, improvements, and squashed bugs can be found in our announcement post here!

Big thank you to all our users, and to everyone who contributed to this release!

Best,

Pomerium Team

Pomerium v0.24 is here! This performance-focused upgrade helps Pomerium run faster and returns it to its previous baseline RAM-usage in addition to adding certificate matching to the Enterprise Console PPL builder.

We also encourage reading the announcement post for more information.

Big thank you to all our users, and to everyone who contributed to this release!

Best,

Pomerium Team

Pomerium v0.23 is here! This version brings improved Observability capabilities and mTLS settings, followed by major performance improvements and bug fixes.

Please read the announcement post for more information.

Big thank you to all our users, and to everyone who contributed to this release!

Best,

Pomerium Team

We have just released Pomerium v0.22. It’s got new features, one for getting Pomerium up and running faster and the other for simplifying policy writing. Then, we have support for a new identity provider (the fruit), followed by performance improvements and bug fixes. 

A complete list can be found in the announcement post.

Big thank you to all our users, and to everyone who contributed to this release!