Skip to content
Sherpa.sh Logo

v1.2.0 - 10/14/25

Section titled “v1.2.0 - 10/14/25”

This release introduces two major security and reliability features that make migrating to Sherpa.sh safer and protecting your applications easier than ever.

What's New

Section titled “What's New”

SafetyNet - Zero-Risk Migration We've launched SafetyNet, our zero-risk migration feature that lets you deploy on Sherpa.sh while keeping your existing provider (Vercel, Netlify, AWS, etc.) as an automatic fallback. Start saving money immediately without the risk of moving everything to a new platform. If Sherpa.sh ever returns an error, traffic automatically fails over to your configured fallback provider without any manual intervention or DNS changes.

Web Application Firewall (WAF) We've added comprehensive WAF protection to automatically protect your applications from common vulnerabilities and sophisticated attacks. The firewall inspects incoming HTTP requests in real-time, filtering out malicious traffic before it reaches your application - with zero configuration required.

New Features

SafetyNet Migration & Disaster Recovery

  • Automatic fallback routing to your existing provider when Sherpa.sh returns errors
  • Intelligent edge routing powered by 200+ global CDN locations
  • Request preservation including headers, body, authentication, and cookies
  • Sub-second automatic failover with 50-150ms latency impact
  • Works with all frameworks and application types
  • CDN caching of fallback responses for cost optimization
  • Real-time monitoring of fallback usage and traffic distribution
  • One-click testing by temporarily disabling your application

Web Application Firewall (WAF)

  • Automatic protection against OWASP Top 10 vulnerabilities
  • Real-time blocking of SQL injection, XSS, and RCE attacks
  • Protection against 400+ known attack patterns and CVEs
  • Machine learning-based threat detection with continuous updates
  • Zero-day exploit protection
  • Malicious bot traffic filtering
  • Web shell detection and blocking
  • Real-time security monitoring and blocked request visibility
  • Geographic threat mapping
  • 100% free protection - just message support to enable

Improvements

Security & Reliability

  • Enhanced protection against injection attacks (SQL, NoSQL, Command, LDAP)
  • Comprehensive XSS protection (Reflected, Stored, DOM-based)
  • Protocol attack prevention (HTTP smuggling, header injection, parameter pollution)
  • File inclusion attack blocking (LFI, RFI, path traversal)
  • Framework-specific vulnerability protection (PHP, Java, Node.js, Ruby, Perl)
  • Data leakage prevention across multiple databases and platforms

Edge Infrastructure

  • V8 isolate runtime for fast edge script execution with sub-millisecond startup
  • Proximity-based execution across global CDN network
  • Framework-agnostic edge routing supporting all Sherpa.sh frameworks
  • Intelligent caching for fallback responses

Migration Experience

  • Immediate cost savings with gradual migration support
  • Zero downtime risk during platform transitions
  • Visual verification tools for testing SafetyNet activation
  • Comprehensive request logging for fallback monitoring