patchletter

The current version of Keycloak is 26.6.4 (as of 26/06/2026).

Keycloak

CNCF / Red Hat · current 26.6.4

Keycloak at a glance

Keycloak is a widely used open-source identity and access management server, providing single sign-on, OAuth2/OIDC and SAML. Keycloak ships regular releases plus security fixes; as the front door to authentication for many applications, hardening and prompt patching are essential.

For admins Keycloak is security-critical infrastructure: a flaw or misconfiguration can compromise every connected application, so apply security releases promptly and follow the hardening guidance. Upgrades follow a documented path with database migrations — back up the database first and read the release notes, since Keycloak has changed significantly across major versions (including the move to Quarkus). Keep the admin console off the open internet, enforce TLS, and use strong admin credentials with two-factor. After upgrading, verify logins, token flows and every realm's clients. Track the version and its support window; patchletter surfaces new Keycloak releases.

Release history · as detected by patchletter

VersionChannelDateNotes
26.6.4STABLE26/06/2026Release notes →

Never miss a Keycloak update

We check the source daily and email you — instantly or as a digest. Free, one-click unsubscribe.

Watch Keycloak

Related tools in Servers & Databases