Lib.rs

WebAssemblybulwark-cli
#envoy #bulwark #security #processor #external #engine #decision

bulwark-ext-processor

An Envoy external processor for the Bulwark security engine

by Bob Aman and 2 contributors

5 releases (breaking)

0.5.0 Apr 7, 2024
0.4.0 Nov 23, 2023
0.3.0 Aug 3, 2023
0.2.0 Jun 29, 2023
0.1.0 May 19, 2023

#4 in #envoy

Download history 10/week @ 2024-02-16 7/week @ 2024-02-23 3/week @ 2024-03-01 2/week @ 2024-03-08 2/week @ 2024-03-15 8/week @ 2024-03-29 127/week @ 2024-04-05 13/week @ 2024-04-12

148 downloads per month
Used in bulwark-cli

Apache-2.0 WITH LLVM-exception

330KB
4.5K SLoC

Bulwark Envoy External Processor

Automated security decision making under uncertainty.

What is Bulwark?

Bulwark is a fast, modern, open-source web application security engine that makes it easier than ever to implement resilient and observable security operations for your web services. It is designed around a user-friendly detection-as-code pattern. Security teams can quickly compose powerful detections from reusable building-blocks while unburdening product application logic from the increased complexity of domain-specific controls.

A complete overview may be found in Bulwark's documentation.

External Processor

The bulwark-ext-processor crate is responsible for exposing a service that implements the Envoy external processing API. It connects Envoy to Bulwark's WebAssembly host environment.

lib.rs:

Provides an Envoy external processing service for Bulwark.

Dependencies

~47–63MB
~1M SLoC