envoy

mirror of https://github.com/docker/envoy synced 2026-04-05 19:45:41 +00:00

No description

C++ 88.7%
Starlark 5.4%
Java 2.3%
Python 1%
Kotlin 0.5%
Other 1.8%

Find a file

Forrest Loomis ef07c1af66 ci: create simpler pipeline		2025-10-21 12:52:23 -04:00
.bazelci	bazel: Remove clang-libstdc++ toolchain and rationalize flags (#39755 )	2025-06-11 12:08:07 -07:00
.devcontainer	tools: fix compilation errors and make debug config generation generic (#41043 )	2025-09-15 09:39:16 +08:00
.github/workflows	ci: create simpler pipeline	2025-10-21 12:52:23 -04:00
.vscode	chore: rename tasks_example.json (#40844 )	2025-08-27 17:42:24 -07:00
api	ext_authz: add send_tls_alert_on_denial option on Network ExtAuthZ filter (#41473 )	2025-10-13 11:17:09 -07:00
bazel	Load cc_library rules as bazel built-ins are deprecated (#41452 )	2025-10-12 13:47:39 +08:00
changelogs	[release/main] repo: Release v1.36.0 (#41499 )	2025-10-14 16:52:06 +01:00
ci	Use the `docker.io/` prefix for docker images where applicable (#41405 )	2025-10-07 17:07:06 +01:00
configs	docs: add architecture diagram for reverse tunnels (#41355 )	2025-10-06 09:55:40 -07:00
contrib	doc: update doc for SetUpstreamOverrideHost in Envoy Golang. (#41369 )	2025-10-10 14:44:50 -04:00
distribution	deps/distribution: Bump distroless -> a1922de (#41456 )	2025-10-10 18:24:58 +01:00
docs	stateful_session: add stats for no session case (#41449 )	2025-10-14 06:02:32 -07:00
envoy	tcp_proxy: add support for overriding generated request ID for tunneling (#41391 )	2025-10-11 08:42:58 -07:00
maintainer
mobile	chore: Fix typo in LoadBalancingPolices (#41455 )	2025-10-12 13:46:59 +08:00
restarter	build(deps): bump flake8 from 7.1.2 to 7.3.0 in /tools/base (#39991 )	2025-06-24 12:24:49 +01:00
security
source	stateful_session: add stats for no session case (#41449 )	2025-10-14 06:02:32 -07:00
support	Use the `do_ci.sh` script for refreshing the compilation database (#37668 )	2025-01-06 11:09:45 +08:00
test	stateful_session: add stats for no session case (#41449 )	2025-10-14 06:02:32 -07:00
third_party/android
tools	check_format: allow designated_initializers (#41430 )	2025-10-10 14:43:07 -04:00
.bazelignore	Removes stale tools/clang_tools directory (#38292 )	2025-02-03 17:53:49 +00:00
.bazelrc	Use the `docker.io/` prefix for docker images where applicable (#41405 )	2025-10-07 17:07:06 +01:00
.bazelversion	bazel: Bump -> 7.6.1 (#40413 )	2025-07-24 14:47:28 +01:00
.clang-format
.clang-tidy	Unify scattered header matchers into ContainsHeader (#40528 )	2025-08-04 12:43:27 -07:00
.coveragerc
.dockerignore	ci: create simpler pipeline	2025-10-21 12:52:23 -04:00
.flake8
.gitattributes	python: Remove requirements.txt entry from .gitattributes (#41170 )	2025-09-22 08:59:34 -07:00
.gitignore	tools/dependency: Add CVE fetcher (#41270 )	2025-09-29 20:59:44 +01:00
.style.yapf
.yamllint
.yapfignore
API_VERSION.txt
BACKPORTS.md
BUILD	dynamic_modules: enables rustfmt.toml (#37295 )	2024-11-21 17:26:45 -07:00
CODE_OF_CONDUCT.md
CODEOWNERS	remove ravenblackx from deprecated cache ownership (#40985 )	2025-10-06 12:00:03 -07:00
CONTRIBUTING.md
DCO
DEPENDENCY_POLICY.md
DEPRECATED.md
DEVELOPER.md
Dockerfile	ci: create simpler pipeline	2025-10-21 12:52:23 -04:00
EXTENSION_POLICY.md	ci/coverage: Add `grcov` (#39611 )	2025-06-02 21:45:46 +00:00
go.mod	build(deps): bump google.golang.org/protobuf from 1.36.9 to 1.36.10	2025-10-07 18:39:36 +01:00
go.sum	build(deps): bump google.golang.org/protobuf from 1.36.9 to 1.36.10	2025-10-07 18:39:36 +01:00
GOVERNANCE.md	docs: fix link (#37458 )	2024-12-02 15:58:22 +00:00
LICENSE
NOTICE
OWNERS.md	Add Dan Zhang as EM and QUIC maintainer (#40701 )	2025-08-14 00:34:10 +00:00
PULL_REQUEST_TEMPLATE.md
PULL_REQUESTS.md
pytest.ini
README.md	docs: remove bad scary link (#38846 )	2025-03-21 19:01:53 +00:00
releases.asc
RELEASES.md	security: update next sec release date (#41352 )	2025-10-03 08:22:05 +00:00
REPO_LAYOUT.md
repokitteh.star	ci/coverage: Add `grcov` (#39611 )	2025-06-02 21:45:46 +00:00
reviewers.yaml	Add danzh2010 to reviewers.yaml (#40810 )	2025-08-20 08:46:22 -07:00
rustfmt.toml	dynamic_modules: enables rustfmt.toml (#37295 )	2024-11-21 17:26:45 -07:00
SECURITY-INSIGHTS.yml	Promote krinkinmu to maintainer (#40239 )	2025-07-15 13:44:44 -07:00
SECURITY.md	docs: updating cncf-envoy-distributors-announce@lists.cncf.io per audit (#35670 )	2024-08-13 15:04:15 +00:00
STYLE.md	Add ENVOY_NOTIFICATION macro (#40298 )	2025-07-25 21:57:05 +00:00
VERSION.txt	[release/main] repo: Release v1.36.0 (#41499 )	2025-10-14 16:52:06 +01:00
WORKSPACE	dynamic_modules: switch to crate_universe to remove manual bindgen (#36240 )	2024-09-23 09:33:55 -06:00

README.md

Cloud-native high-performance edge/middle/service proxy

Envoy is hosted by the Cloud Native Computing Foundation (CNCF). If you are a company that wants to help shape the evolution of technologies that are container-packaged, dynamically-scheduled and microservices-oriented, consider joining the CNCF. For details about who's involved and how Envoy plays a role, read the CNCF announcement.

Documentation

Official documentation
FAQ
Example documentation
Blog about the threading model
Blog about hot restart
Blog about stats architecture
Blog about universal data plane API
Blog on Lyft's Envoy dashboards

data-plane-api: v2 API definitions as a standalone repository. This is a read-only mirror of api.
envoy-perf: Performance testing framework.
envoy-filter-example: Example of how to add new filters and link to the main repository.

Contact

envoy-announce: Low frequency mailing list where we will email announcements only.
envoy-security-announce: Low frequency mailing list where we will email security related announcements only.
envoy-users: General user discussion.
envoy-dev: Envoy developer discussion (APIs, feature design, etc.).
envoy-maintainers: Use this list to reach all core Envoy maintainers.
Twitter: Follow along on Twitter!
Slack: Slack, to get invited go here.
- NOTE: Response to user questions is best effort on Slack. For a "guaranteed" response please email envoy-users@ per the guidance in the following linked thread.

Please see this email thread for information on email list usage.

Contributing

Contributing to Envoy is fun and modern C++ is a lot less scary than you might think if you don't have prior experience. To get started:

Contributing guide
Beginner issues
Build/test quick start using docker
Developer guide
Consider installing the Envoy development support toolchain, which helps automate parts of the development process, particularly those involving code review.
Please make sure that you let us know if you are working on an issue so we don't duplicate work!

Community Meeting

The Envoy team has a scheduled meeting time twice per month on Tuesday at 9am PT. The public Google calendar is here. The meeting will only be held if there are agenda items listed in the meeting minutes. Any member of the community should be able to propose agenda items by adding to the minutes. The maintainers will either confirm the additions to the agenda, or will cancel the meeting within 24 hours of the scheduled date if there is no confirmed agenda.

Security

Security Audit

There has been several third party engagements focused on Envoy security:

In 2018 Cure53 performed a security audit, full report.
In 2021 Ada Logics performed an audit on our fuzzing infrastructure with recommendations for improvements, full report.

Reporting security vulnerabilities

If you've found a vulnerability or a potential vulnerability in Envoy please let us know at envoy-security. We'll send a confirmation email to acknowledge your report, and we'll send an additional email when we've identified the issue positively or negatively.

For further details please see our complete security release process.

ppc64le builds

Builds for the ppc64le architecture or using aws-lc are not covered by the envoy security policy. The ppc64le architecture is currently best-effort and not maintained by the Envoy maintainers.

Releases

For further details please see our release process.