Olivia
Online
Cerbos
@cerbosdev
Authorization for enterprise software and AI.
Joined June 2021
618 Following
790 Followers
1.9K Posts
Β Pinned Tweet
ππ₯³#CerbosHub has successfully transitioned from Beta to #GeneralAvailability!
Huge thank you to our community for your support, and to 500+ organizations that have put their trust into Cerbos Hub! π§‘
Find out more: https://t.co/c9XCP2ltoJ
#Cerbos #GA #Authorization
An #AI support bot gave away #Instagram accounts because someone asked it nicely. No exploit, just persistence
The fix isn't a better prompt. The #access decision has to live outside the model, in a layer the attacker can't talk to: https://t.co/DRZ658LxMv
#Meta #Authorization
Write #authorization #policies in #ClaudeCode by describing the permission in plain English.
The skill drafts schemas, derived roles, and tests, then compiles against the real Cerbos binary before you commit.
https://t.co/YzzwxgkWzi
Who to follow
Hoppscotch
@hoppscotch_io
Open-Source API Development Ecosystem β’ Offline, On-Prem & Cloud β’ Web, Desktop & CLI β’ Global #1 Open-Source API Tool β’ 80K+ Stars on GitHub β’ https://t.co/IBkT3MYffx
Fly.io 
@flydotio
The platform for devs who just want to ship. Powered by sandboxes that let you deploy any code with confidence.
Grype
@GrypeProject
Grype is an open source vulnerability scanner for Software Bills of Material (SBOMs), containers, and filesystems. Created and maintained by @Anchore.
Rivian shipped bad firmware to its fleet. Tesla's OTA disabled safety systems on 2M cars. Chevy's drained customer batteries.
The connected car is an enterprise endpoint, and RBAC alone can't govern it.
Guide to getting automotive authorization right: https://t.co/3sPiDbaCLX
How to layer fine-grained, attribute-based #authorization on top of your #AIgateway, so you can control which models, tools, #MCP servers each user & agent can reach, and keep delegation chains from leaking privilege
https://t.co/oMD21Uew0l
Identity gets the AI agent into the building. Authorization protects the vault.
@alexolivier 's #EIC2026 takeaways. Why counting agents isn't controlling them, where the decision lives, and the audit evidence the EU AI Act will ask for.
https://t.co/5RjyJ2FxRF
Last day of #EIC2026
4 days of conversations, 1 clear takeaway
Modern identity is sorted. The hard part some teams have yet to tackle now is what users can do once authenticated, especially when agents act on their behalf (#Authorization. That's what we do)
#IdentityConference
Most #identitysecurity spend lands on admin time. Provisioning, role assignment, access reviews, posture management.
None of it decides what happens when a token hits an API at 3am on a Sunday. That decision is #authorization π
https://t.co/1yLffPSEjJ
Your #IdP answers "who is this person?"
It doesn't answer "can they do this specific thing, to this resource, right now?"
That's #authorization. Here's where identity providers fall short, and how to shortlist a dedicated authZ solution. π
https://t.co/5cpSYXhS3O
An #IdP signs a token and stamps a list of claims that every downstream system trusts for an hour.
That list is an #authorization decision. Most identity teams don't manage it like one.
No policy behind it. No decision log. No clear owner.
https://t.co/c1a9EdEoM8
Cerbos is at #eic2026
πFind @emre & @alexolivier at our candy bar on Level C, opposite Starter Program sponsors.
Alex is also on three panels. #OpenID for the Enterprise, Signals/Policies/Identity Agency, and #AuthZEN deep dive.
@kuppingercole #IdentitySecurity
Your authorization is only as strong as the decision made at the moment a request arrives. Everything else is hope.
New post on #runtime #authorization platforms π
https://t.co/FI2VSMZ6fE
Most #AI agent #governance plans have a kill switch in them. In healthcare or finance, flipping it just creates the next incident. The fix is a dimmer switch. Fade access down, narrow the policy, keep the lights on.
https://t.co/qsTzX0proc
#authorization
The Cerbos PDP rule table index now runs on a custom #bitmap with a meta layer that proves two bitmaps don't overlap before doing any per-word work.
Three months of rewrites, hot path now 6.6 Β΅s per op.
Full writeup from Sam: https://t.co/qrvGGjyN5M
Cerbos is at #eic2026 next week
π¬Catch our candy bar on Level C and chat authorization, AuthZEN, or AI agents.
Two panels @alexolivier will be on: "Signals, Policies, and Identity Agency", "Leverage OpenID AuthZen".
See you in Berlin!
@kuppingercole #IdentitySecurity @emre
Cerbos Newsletter May 2026 π’ https://t.co/Wis3E8Lyxi
β
Governing #AI agents
β
#Authorization management platform
β
The case for on-premise authZ
β
#AuthZEN, #SharedSignals, #SCIMEvents, and #IPSIE
β
#Claude skill for writing authZ policies
Subscribe: https://t.co/zY11eS9k4Q
Notes from @alexolivier on the @openid Enterprise Panel.
Shared Signals keeps data fresh. #AuthZEN turns it into a real-time decision. SCIM Events handles lifecycle. IPSIE describes what good looks like.
Big gap is reference architectures.
https://t.co/F74mgmyF13
An agent kicks off booking a hotel and 50 tool calls later is wiring money to a Cayman account. Each call passes policy on its own. The gap between declared intent and runtime behaviour is where authorizing AI agents gets hard.
@alexolivier's #IIW42 recap https://t.co/RZq6clEa6V
"can this user do X on this resource right now"
If answering that means grepping three services, 2 YAML configs, a 2022 access ticket - you've seen why #AuthorizationManagementPlatform s are emerging
What they are, how they work, where they fit: https://t.co/id4vhUj4lz
#AMP
Last Seen Users on Sotwe
Salted Bodies π¦π¦π¦
Seen from Singapore
Bung cakep
Seen from Singapore
The Cabby
Seen from Singapore
観測θ
ζ§ε± ε
«η₯
Seen from United States
Ψ§ΩΩΨΩ Ψ§ΩΨΉΨ±Ψ§ΩΩ
Seen from Kuwait
GENΓ ΓΔ°FT
Seen from Turkey
KΓͺnh nΓ y cΓ³ nhiα»u phim hay π₯
Seen from Vietnam
MOVIE X SCENE
Seen from South Africa
Sasuke
Seen from India
lahori boi
Seen from Netherlands
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers