The Envoy proxy has become the third project to "graduate" as a CNCF project, after the Kubernetes orchestration and the Prometheus monitoring software.
Envoy was developed by the carsharing startup Lyft and donated to the CNCF in 2017. It is a proxy as well as a "service mesh" for microservice environments. Envoy supports HTTP 1.1, HTTP/2 and the gRPC protocols. Support for QUIC and Kafka are planned.
The security firm Cure53 has completed a security audit of Envoy with no critical vulnerabilities found.