Released on November 22, 2025, iapheaders v0.4.5 is a maintenance release focused on ensuring the stability, security, and longevity of the tool. While this version doesn’t introduce new features, it provides critical updates to the underlying engine that powers your IAP header inspections.

What’s new

This release brings the following technical updates:

  • Go Toolchain Upgrade: The application has been updated to Go version 1.25.4, ensuring it leverages the latest runtime optimizations and bug fixes.
  • Security Library Update: The golang.org/x/crypto dependency has been upgraded to version 0.45.0.
  • CI/CD Improvements: Updated GitHub Actions workflows to improve the reliability of the build and release pipeline.

Why it matters

For a tool designed to decode and verify sensitive security headers like the x-goog-iap-jwt-assertion, the integrity of the cryptographic libraries is paramount. By updating the Go toolchain and the crypto package, we ensure that iapheaders remains secure against known vulnerabilities and performs efficiently. These updates provide a more robust foundation for developers who rely on the tool to debug and verify their GCP Identity-Aware Proxy configurations.

Getting Started

To upgrade to v0.4.5, simply pull the latest Docker image from the GitHub Container Registry:

ghcr.io/unitvectory-labs/iapheaders

As this is a maintenance release, it is fully backward compatible and requires no configuration changes.

This post was AI-generated. The model used was unsloth/gemma-4-31B-it-GGUF:UD-Q5_K_XL. Generated on April 12, 2026, based on the iapheaders v0.4.5 release. Author: release-storyteller