| CARVIEW |
Select Language
HTTP/2 200
date: Thu, 24 Jul 2025 22:01:11 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, X-Requested-With,Accept-Encoding, Accept, X-Requested-With
etag: W/"baaf701ac37da465a37c6f10544d4ca3"
cache-control: max-age=0, private, must-revalidate
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; child-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com *.rel.tunnels.api.visualstudio.com wss://*.rel.tunnels.api.visualstudio.com objects-origin.githubusercontent.com copilot-proxy.githubusercontent.com proxy.individual.githubcopilot.com proxy.business.githubcopilot.com proxy.enterprise.githubcopilot.com *.actions.githubusercontent.com wss://*.actions.githubusercontent.com productionresultssa0.blob.core.windows.net/ productionresultssa1.blob.core.windows.net/ productionresultssa2.blob.core.windows.net/ productionresultssa3.blob.core.windows.net/ productionresultssa4.blob.core.windows.net/ productionresultssa5.blob.core.windows.net/ productionresultssa6.blob.core.windows.net/ productionresultssa7.blob.core.windows.net/ productionresultssa8.blob.core.windows.net/ productionresultssa9.blob.core.windows.net/ productionresultssa10.blob.core.windows.net/ productionresultssa11.blob.core.windows.net/ productionresultssa12.blob.core.windows.net/ productionresultssa13.blob.core.windows.net/ productionresultssa14.blob.core.windows.net/ productionresultssa15.blob.core.windows.net/ productionresultssa16.blob.core.windows.net/ productionresultssa17.blob.core.windows.net/ productionresultssa18.blob.core.windows.net/ productionresultssa19.blob.core.windows.net/ github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com api.githubcopilot.com api.individual.githubcopilot.com api.business.githubcopilot.com api.enterprise.githubcopilot.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com copilot-workspace.githubnext.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: blob: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com private-avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com release-assets.githubusercontent.com secured-user-images.githubusercontent.com/ user-images.githubusercontent.com/ private-user-images.githubusercontent.com opengraph.githubassets.com copilotprodattachments.blob.core.windows.net/github-production-copilot-attachments/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com objects-origin.githubusercontent.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/ private-user-images.githubusercontent.com github-production-user-asset-6210df.s3.amazonaws.com gist.github.com; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; upgrade-insecure-requests; worker-src github.githubassets.com github.com/assets-cdn/worker/ github.com/assets/ gist.github.com/assets-cdn/worker/
server: github.com
content-encoding: gzip
accept-ranges: bytes
set-cookie: _gh_sess=2VSDPIs6RnTw%2FO5VmJrFy9nD%2BC5JcXBDDPjEkx3wOhASyCS4UeHEYz669UQwQsi1jyaL2SaL%2BMlp0cK4Dahs1yR14fOKVloK8MkcZaygkQbBkZqsH%2FofgARoizyZl3XgGrRRWOrrunuxdu8FpUQXtpFjdz%2B96EKOzBhI%2FHa184yl7Lt5xZBZUESPZXcTAI6DVXaOEoxUVDBxYr3zex8p%2FXIqwO%2FhBM6wOnD%2BKg2QV5bz0NMQPiQTlkhf1U3DB2uFht9wdQAgG7LWoE7lhQk5dw%3D%3D--9ZJatAfMkIV%2BTeJW--xAhvnKtOVj3FlmDk5cPraQ%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
set-cookie: _octo=GH1.1.695027354.1753394470; Path=/; Domain=github.com; Expires=Fri, 24 Jul 2026 22:01:10 GMT; Secure; SameSite=Lax
set-cookie: logged_in=no; Path=/; Domain=github.com; Expires=Fri, 24 Jul 2026 22:01:10 GMT; HttpOnly; Secure; SameSite=Lax
x-github-request-id: B6D6:117EB9:64DA:9A1A:6882AD26
Releases · cedar-policy/cedar · GitHub
30 Jun 19:56
Loading
23 Apr 16:54
Loading
25 Feb 20:37
Loading
12 Feb 21:35
Loading
23 Jan 21:07
Loading
21 Jan 17:44
Loading
11 Nov 17:18
Loading
08 Oct 15:07
Loading
07 Oct 19:34
Loading
Skip to content
Navigation Menu
{{ message }}
-
Notifications
You must be signed in to change notification settings - Fork 101
Releases: cedar-policy/cedar
Releases · cedar-policy/cedar
v4.5.0
be723f7
This commit was created on GitHub.com and signed with GitHub’s verified signature.
Compare
Release 4.5.0, available on crates.io
[4.5.0]
Cedar Language Version: 4.4
Added
- Added
Entities::upsert_entities()to add or updateEntitys in anEntitiesstruct (resolving #1479) - Added schema parsing functions to improve compatibility with JSON schema originally writing for versions 2.5.0
and earlier. These functions will ignore unrecognized keys in some positions where they are currently an error,
matching the behavior of earlier versions. This is intended help some users migrate to the current 4.0 schema
format. The new functions are deprecated and placed behind thedeprecated-schema-compatfeature. (#1600) Expression::new_duration,Expression::new_datetime,RestrictedExpression::new_duration,
andRestrictedExpression::new_datetime(#1614)- Added a function to be able to split a policy set parsed from a single string into its component static
policies and templates. The relevant function ispolicy_set_text_to_partsin theffimodule (#1629). - Implemented RFC 71 (trailing commas)
for Cedar policy files. (#1606)
Changed
- Allow entity attributes and tags to contain Action-typed entities, and pass
policy/entity/request validation (#1652) - Changed experimental
entity-manifestfunctioncompute_entity_manifestto
accept an&Validatorinstead of&Schema. Callers can construct aValidator
from a schema withValidator::newafterwhich a reference to the original
schema can be retrieved usingValidator::schema. (#1584) - Bumped MSRV to 1.82 (#1611)
Assets 2
2 people reacted
v4.4.1
v4.4.0
cab0229
This commit was created on GitHub.com and signed with GitHub’s verified signature.
Compare
Release 4.4.0, available on crates.io
Cedar Language Version: 4.3
Added
- Stabilized RFC 76, removing the experimental
level-validatefeature flag. That functionality is now available without the feature flag. Stabilization comes with changes to fix bugs in the features. Level validation is now more permissive when checkingifexpressions (fixing #1507), and stricter when checking record literals and entity tag operations (fixing #1505 and #1503). (#1567) - Implemented RFC 53 (enumerated entity types) (#1377)
- Stabilized RFC 80 (
datetimeextension), makingdatetimea default feature. (#1541) - Added
Entities::remove_entities()to removeEntitys from anEntitiesstruct (#1453, resolving #701) - Added
PolicySet::merge()to merge aPolicySetinto anotherPolicySetstruct (#1476, resolving #610) - Added
to_cedarfunctions forPolicySet,Policy, andTemplatethat render the policy in the Cedar syntax. These functions can be used to convert JSON formatted policies into the human-readable syntax (#1510, resolving #461) - Added
Validator::schema()to get a reference to theSchemaeven after it has been consumed to construct aValidator(#1524) - Added
Schema::request_envs()to get all of theRequestEnvs that are valid according to the schema. (This joins the existingPolicy::get_valid_request_envs()andTemplate::get_valid_request_envs()that return the subset of request envs that are valid for a particular policy or template.) (#1547) - Added
EntityId::unescaped(), analogous toEntityId::escaped(). This is simply an alias forEntityId::as_ref()with theAsRefimpl that produces&str. (#1555) - Added
PartialResponse::unknown_entitiesmethod (#1557) - Added
Entities::lenandEntities::is_emptymethods (#1562, resolving #1523)
Changed
- Changed
Entities::add_entitiesandEntities::from_entitiesto ignore structurally equal entities with the same Entity UID. - For
protobufsexperimental feature, a number of changes to the interface and the Protobuf format definitions, as we continue to iterate towards making this feature stable. (#1488, #1495, #1506, #1535) - Bump MSRV to 1.81 (#1542)
HierarchyNotRespectedvalidation error is no longer returned (although the error variant remains, to avoid a breaking change). This means that in some edge cases, policies that previously failed to validate under strict validation will now pass validation, probably with anImpossiblePolicywarning. (#1355, resolving #638)
Assets 2
1 person reacted
v4.3.3
ba27ea2
This commit was created on GitHub.com and signed with GitHub’s verified signature.
Compare
Release 4.3.3, available on crates.io
Changed
Fixed
- Fixed the experimental
protobufsfeature so that code depending oncedar-policy
with this feature now successfully builds, even if that code is not part of the
same Cargo workspace ascedar-policy,cedar-policy-core, etc (#1452). - Fixed a bug in the experimental
entity-manifestfeature. If an entity appears as
both a possible value for a scope variable and an entity literal, slicing
using entity manifests will now correctly capture all necessary attributes (#1429). - Fixed a bug in the experimental
entity-manifestandlevel-validate
features. These features failed to consider any attribute accesses occurring
inside the guard of anifexpression when guard expression had a singleton
boolean type (#1462).
Assets 2
1 person reacted
v4.3.2
c866ac2
This commit was created on GitHub.com and signed with GitHub’s verified signature.
Compare
Release 4.3.2, available on crates.io
Cedar Language Version: 4.2
Fixed
- Assume sufficient stack space when it cannot be determined (#1446, resolving #1443). Note that on platforms not supported by
stacker(e.g., Wasm, Android), this means that large inputs may result in stack overflows and crashing the process. On all platforms supported bystacker(Linux, macOS, ...), Cedar will continue to return the graceful errorRecursionLimitinstead of crashing.
Assets 2
v4.3.1
ae49f40
This commit was created on GitHub.com and signed with GitHub’s verified signature.
Compare
Release 4.3.1, available on crates.io
Cedar Language Version: 4.2
Fixed
- Disable doc generation for feature
protobufs, unblocking that for other features (#1434)
Assets 2
1 person reacted
v4.3.0
ab8aef0
This commit was created on GitHub.com and signed with GitHub’s verified signature.
Compare
Release 4.3.0, available on crates.io
Cedar Language Version: 4.2
Added
- Implemented RFC 62 (extended
hasoperator) (#1327, resolving #1329) - Implemented RFC 80 (
datetimeextension) as an experimental feature under flagdatetime(#1276, #1415) - Added new
.isEmpty()operator on sets (#1358, resolving #1356) - Implemented RFC 48 (schema annotations) (#1316)
- Implemented RFC 74 (entity manifests and slicing) behind the experimental
entity-manifestflag (#1239) - Added protobuf schemas and (de)serialization behind the experimental
protobufsflag (#1277, #1345) - New
Entity::new_with_tags()andEntity::tag()functions (#1402, resolving #1374) - Added
Request::contextandContext::getmethods to allow easy extraction of values from the context by key (#1318) - For the
partial-evalexperimental feature, addedPartialResponse::reauthorize_with_bindingsto accept substitutions from an iterator and deprecatedPartialResponse::reauthorize(#1387) - For the
partial-evalexperimental feature, addedRequestBuild::unknown_principal_with_typeandRequestBuild::unknown_resource_with_typemethods, allowing an unknown principal or resource to be constrained to a certain entity type (#1391) - Added
Cloneimplementations for more types (#1324)
Changed
- Stopped emitting warnings for identifiers containing certain printable ASCII
characters (e.g.,/and:) (#1336, resolving #621)
Fixed
Assets 2
2 people reacted
v4.2.2
4dea3e6
This commit was created on GitHub.com and signed with GitHub’s verified signature.
Compare
Release 4.2.2, available on crates.io.
Changed
- The error associated with parsing a non-existent extension function additionally
includes a suggestion based on available extension functions (#1280, resolving #332). - The error associated with parsing a non-existent extension method additionally
includes a suggestion based on available extension methods (#1289, resolving #246). - Improved entity validation speed, particularly for large schemas with many
actions (#1290 and #1296, resolving #1285)
Fixed
Assets 2
1 person reacted
v4.2.1
9edbddd
This commit was created on GitHub.com and signed with GitHub’s verified signature.
Compare
Release 4.2.1, available on crates.io
Changelog
- Fixes a minor issue preventing docs from building on docs.rs
Assets 2
v4.2.0
ec6424e
This commit was created on GitHub.com and signed with GitHub’s verified signature.
Compare
Release 4.2.0, available on crates.io.
Cedar Language version: 4.1
Added
- Added
sub_entity_literalsAPI (#1233). - Added level validation RFC 76 as an experimental feature.
- Annotations without explicit values. It is now possible to write an annotation
@my_annotationas
short-hand for@my_annotation("")(#1231, resolving #1031). - Stabilized RFC 82, removing
the experimentalentity-tagsfeature flag. That functionality is now available
without the feature flag.
Changed
Assets 2
Previous Next
You can’t perform that action at this time.