Released on March 19, 2026, authzjwtbearerinjector v0.3.5 is a maintenance release focused on strengthening the security posture and operational stability of the service. While this update doesn’t introduce new functional features, it provides critical under-the-hood improvements that ensure the injector remains secure and performant when deployed as a sidecar to Envoy Proxy.

What’s new

Enhanced Container Security

We have implemented several security hardening measures to reduce the attack surface of the service. The container now runs as a non-root user (UID 65532), following industry best practices for containerized workloads. Additionally, the runtime base image has been upgraded to Debian 13, ensuring that the environment benefits from the latest system-level security patches.

Better Operational Visibility

To simplify deployment verification and troubleshooting, v0.3.5 introduces explicit version logging at startup. Operators can now immediately confirm the running version of the service through the logs, reducing ambiguity during rollouts and upgrades.

Core Dependency Updates

The service has been updated to leverage the latest stable versions of its core stack:

  • Go Toolchain: Upgraded to Go 1.26.1 for improved performance and stability.
  • gRPC & Envoy: Updated google.golang.org/grpc and the Envoy control plane libraries to their latest versions to ensure continued compatibility and reliability.

Why it matters

For users of authzjwtbearerinjector, these changes translate to a more resilient and secure identity injection layer. By moving to a non-root execution model and updating the base OS, we significantly mitigate potential container escape risks and vulnerability windows. The dependency updates ensure that the service continues to operate efficiently within the evolving gRPC and Envoy ecosystems, while improved logging provides the transparency needed for production-grade observability.

Getting started with v0.3.5

Upgrading to v0.3.5 is seamless, as there are no breaking changes to the API or configuration. To update your deployment, simply pull the latest image:

ghcr.io/unitvectory-labs/authzjwtbearerinjector:v0.3.5

This post was AI-generated using the model unsloth/gemma-4-31B-it-GGUF:UD-Q5_K_XL. It is based on the authzjwtbearerinjector repository and the v0.3.5 release published on March 19, 2026. Generated by release-storyteller.