GO-2023-1723
and 5 other vulnerabilities
GO-2023-1723 : SpiceDB binding metrics port to untrusted networks and can leak command-line flags in github.com/authzed/spicedb
GO-2023-2166 : SpiceDB leaks information in log files when URI cannot be parsed in github.com/authzed/spicedb
GO-2024-2597 : Integer overflow in chunking helper causes dispatching to miss elements or panic in github.com/authzed/spicedb
GO-2024-2716 : SpiceDB: LookupSubjects may return partial results if a specific kind of relation is used in github.com/authzed/spicedb
GO-2024-2939 : SpiceDB exclusions can result in no permission returned when permission expected in github.com/authzed/spicedb
GO-2024-3131 : SpiceDB having multiple caveats on resources of the same type may improperly result in no permission in github.com/authzed/spicedb
Discover Packages
github.com/authzed/spicedb
internal
datastore
postgres
common
package
Version:
v1.14.0
Opens a new window with list of versions in this module.
Published: Nov 2, 2022
License: Apache-2.0
Opens a new window with license information.
Imports: 14
Opens a new window with list of imports.
Imported by: 0
Opens a new window with list of known importers.
Documentation
¶
func ConfigurePGXLogger(connConfig *pgx.ConnConfig)
ConfigurePGXLogger sets zerolog global logger into the connection pool configuration, and maps
info level events to debug, as they are rather verbose for SpiceDB's info level
func ConvertToWriteConstraintError(livingTupleConstraint string , err error ) error
ConvertToWriteConstraintError converts the given Postgres error into a CreateRelationshipExistsError
if applicable. If not applicable, returns nils.
NewPGXExecutor creates an executor that uses the pgx library to make the specified queries.
TxFactory returns a transaction, cleanup function, and any errors that may have
occurred when building the transaction.
¶
Click to show internal directories.
Click to hide internal directories.
Affected by 
Documentation
¶
Source Files