cel-spec

module

v0.14.0 Latest Latest Go to latest Published: Jan 10, 2024 License: Apache-2.0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/google/cel-spec

Links

Open Source Insights

README ¶

Common Expression Language

The Common Expression Language (CEL) implements common semantics for expression evaluation, enabling different applications to more easily interoperate.

Key Applications

Security policy: organizations have complex infrastructure and need common tooling to reason about the system as a whole
Protocols: expressions are a useful data type and require interoperability across programming languages and platforms.

Guiding philosophy:

Keep it small & fast.
- CEL evaluates in linear time, is mutation free, and not Turing-complete. This limitation is a feature of the language design, which allows the implementation to evaluate orders of magnitude faster than equivalently sandboxed JavaScript.
Make it extensible.
- CEL is designed to be embedded in applications, and allows for extensibility via its context which allows for functions and data to be provided by the software that embeds it.
Developer-friendly.
- The language is approachable to developers. The initial spec was based on the experience of developing Firebase Rules and usability testing many prior iterations.
- The library itself and accompanying toolings should be easy to adopt by teams that seek to integrate CEL into their platforms.

The required components of a system that supports CEL are:

The textual representation of an expression as written by a developer. It is of similar syntax to expressions in C/C++/Java/JavaScript
A binary representation of an expression. It is an abstract syntax tree (AST).
A compiler library that converts the textual representation to the binary representation. This can be done ahead of time (in the control plane) or just before evaluation (in the data plane).
A context containing one or more typed variables, often protobuf messages. Most use-cases will use attribute_context.proto
An evaluator library that takes the binary format in the context and produces a result, usually a Boolean.

Example of boolean conditions and object construction:

// Condition
account.balance >= transaction.withdrawal
    || (account.overdraftProtection
    && account.overdraftLimit >= transaction.withdrawal  - account.balance)

// Object construction
common.GeoPoint{ latitude: 10.0, longitude: -5.5 }

For more detail, see:

Released under the Apache License.

Disclaimer: This is not an official Google product.

Directories ¶

Path	Synopsis
proto
test/v1/proto2/test_all_types
test/v1/proto3/test_all_types
test/v1/testpb
tests module
envcheck Package envcheck checks runtime support of declarations.	Package envcheck checks runtime support of declarations.
simple Package simple runs end-to-end CEL conformance tests against ConformanceService servers.	Package simple runs end-to-end CEL conformance tests against ConformanceService servers.
tools
celrpc Package celrpc defines CEL conformance service RPC helpers.	Package celrpc defines CEL conformance service RPC helpers.
celrpc/testpipeimpl/main package main defines a simple implementation of the pipe protocol.	package main defines a simple implementation of the pipe protocol.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL