Security Advisories for github.com/authzed/spicedb in go
Low
5 months ago
SpiceDB checks involving relations with caveats can result in no permission when permission is expected
go
github.com/authzed/spicedb
Low
about 1 year ago
SpiceDB calls to LookupResources using LookupResources2 with caveats may return context is missing when it is not
go
github.com/authzed/spicedb
Moderate
about 1 year ago
SpiceDB having multiple caveats on resources of the same type may improperly result in no permission
go
github.com/authzed/spicedb
Moderate
over 1 year ago
SpiceDB exclusions can result in no permission returned when permission expected
go
github.com/authzed/spicedb
Low
over 1 year ago
SpiceDB: LookupSubjects may return partial results if a specific kind of relation is used
go
github.com/authzed/spicedb
High
over 1 year ago
Integer overflow in chunking helper causes dispatching to miss elements or panic
go
github.com/authzed/spicedb
Moderate
almost 2 years ago
SpiceDB leaks information in log files when URI cannot be parsed
go
github.com/authzed/spicedb
Low
over 2 years ago
SpiceDB's LookupResources may return partial results
go
github.com/authzed/spicedb
High
over 2 years ago
SpiceDB binding metrics port to untrusted networks and can leak command-line flags
go
github.com/authzed/spicedb
High
almost 4 years ago
Lookup operations do not take into account wildcards in SpiceDB
go
github.com/authzed/spicedb