The protocol buffers project has published a security bulletin affecting protobuf for C++ and Python: https://github.com/protocolbuffers/protobuf/security/advisories/GHSA-8gq9-2x98-w8hf
Please consider upgrading your protobuf version ASAP. The following gRPC versions have been tested with the patched protobuf versions and will work properly with them: - grpc (C++) (1.49.1 <https://github.com/grpc/grpc/releases/tag/v1.49.1>, 1.48.2 <https://github.com/grpc/grpc/releases/tag/v1.48.2>, 1.47.2 <https://github.com/grpc/grpc/releases/tag/v1.47.2>, 1.46.5 <https://github.com/grpc/grpc/releases/tag/v1.46.5>) - grpcio <https://pypi.org/project/grpcio/>, grpcio-tools <https://pypi.org/project/grpcio-tools/> (Python) (1.49.1 <https://pypi.org/project/grpcio/1.49.1/>, 1.48.2 <https://pypi.org/project/grpcio/1.48.2/>, 1.47.2 <https://pypi.org/project/grpcio/1.47.2/>, 1.46.5 <https://pypi.org/project/grpcio/1.46.5/>) -- You received this message because you are subscribed to the Google Groups "grpc.io" group. To unsubscribe from this group and stop receiving emails from it, send an email to grpc-io+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/grpc-io/893c2a1a-c55f-41d8-88bb-05af3cb1a270n%40googlegroups.com.
