Skip to content

Pomerium

Network Security

Pomerium is an identity‑ and context‑aware reverse proxy that provides clientless, secure access to internal web apps without a VPN.

Track releases GitHub Website
Go Latest v0.32.7 · 27d ago Security brief →

Features

  • Clientless access eliminates the need for VPNs
  • Tunnel‑free deployment improves performance
  • Continuous verification and auditing enforce security

Recent releases

View all 7 releases →
v0.32.6 Breaking risk
Breaking changes
  • exp and nbf claims removed from core/session
Full changelog

What's Changed

Changed

  • core/session: remove exp and nbf by @backport-actions-token[bot] in https://github.com/pomerium/pomerium/pull/6306

Full Changelog: https://github.com/pomerium/pomerium/compare/v0.32.5...v0.32.6

View release on GitHub
v0.32.4 Bug fix

Patch release detecting proxy protocol changes in HTTP redirect server configuration.

View release on GitHub
v0.32.2 Security relevant
Security fixes
  • Message smuggling via case-insensitive JSON unmarshalling in MCP
View release on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

About

Stars
4,824
Forks
332
Languages
Go TypeScript Jsonnet
View on GitHub Homepage Documentation

Similar tools

Tinyproxy
oauth2-proxy
pangolin
zoraxy
stalwart

Beta — feedback welcome: [email protected]