luxolus
/
open-consul
2
0
Fork 0
Code Issues 1 Pull Requests Packages Releases Wiki Activity
open-consul/agent/envoyextensions
History
Michael Zalimeni 4cae008559
Disable remote proxy patching except AWS Lambda (#17415) 
To avoid unintended tampering with remote downstreams via service
config, refactor BasicEnvoyExtender and RuntimeConfig to disallow
typical Envoy extensions from being applied to non-local proxies.

Continue to allow this behavior for AWS Lambda and the read-only
Validate builtin extensions.

Addresses CVE-2023-2816.
 		2023-05-23 11:55:06 +00:00
..
builtin Disable remote proxy patching except AWS Lambda (#17415) 2023-05-23 11:55:06 +00:00
registered_extensions.go Wasm Envoy HTTP extension (#16877) 2023-04-06 14:12:07 -07:00
registered_extensions_test.go Disable remote proxy patching except AWS Lambda (#17415) 2023-05-23 11:55:06 +00:00