-
## CVE-2023-32731 - High Severity Vulnerability
Vulnerable Library - grpcio-1.37.0-cp37-cp37m-manylinux2014_x86_64.whl
HTTP/2-based RPC framework
Library home page: https://files.pythonhosted.org/pa…
-
## HTTTP/2 flood prevention
[Low-Rate Denial-of-Service Attacks against HTTP/2 Services](https://www.researchgate.net/publication/280591671_Low-Rate_Denial-of-Service_Attacks_against_HTTP2_Services…
-
请问下有没有支持HTTP/2的计划?
-
In #2217, @carl-mastrangelo had the idea to cache high order objects in HPACK's dynamic table. Carl mentioned the example of instead of parsing a jwt token on every request, we could cache an object t…
-
Not sure if this is a HLS issue, but I'd love to get a squiggly warning in package.yaml whenever I misspell a language extension, e.g.:
```
default-extensions:
- ExplicitForall
```
Completion…
-
(disclaimer: I wrote it)
https://github.com/bearcove/merde_json is lighter than serde_json, and could easily replace it for the two places fluke deals with json:
- in httpwg-gen (parsing the J…
-
### Go version
go version go1.19.8 linux/amd64
### What operating system and processor architecture are you using (`go env`)?
```shell
GOVERSION="go1.19.8"
GOHOSTARCH="amd64"
GOHOSTOS="lin…
-
As @surendarchandra noticed, our HPACK header tries to encode as many header values as possible into dynamic table entries. The effect can be that high entropy headers like `Date` or `Content-Length` …
-
See [discussion](https://github.com/tempesta-tech/enterprise/issues/23#issuecomment-2053657853)
- [x] [CVE-2019-9511](https://github.com/advisories/GHSA-89fc-749h-w2fj) “Data Dribble” - you may try …
-
See https://github.com/twitter/hpack/issues/43
Works fine with ByteArrayInputStream but breaks if you use SequenceInputStream.
It is unlikely that the twitter/hpack issue will be fixed.
We co…