For information on gRPC Security Policy and reporting potentional security issues, please see gRPC CVE Process.
Security: grpc/grpc-node
Security
SECURITY.md
-
An incoming malformed compressed message can cause a client or server crashGHSA-99f4-grh7-6pcq published
May 20, 2026 by murgatroid99High -
A malformed request can cause a server crashGHSA-5375-pq7m-f5r2 published
May 20, 2026 by murgatroid99High -
@grpc/grpc-js can allocate memory for incoming messages well above configured limitsGHSA-7v5v-9h63-cj86 published
Jun 10, 2024 by murgatroid99Moderate
Learn more about advisories related to grpc/grpc-node in the GitHub Advisory Database