Affected versions of this package are vulnerable to Denial of Service (DoS) in the implementation of the HTTP/2 protocol. An attacker can cause a denial of service (including via DDoS) by rapidly resetting many streams through request cancellation
Solution:
Update google.golang.org/grpc to v1.58.3 to address CVE-2023-44487
Problem:
Solution:
go mod tidy -compat=1.17