Hi Everyone,
We have a gRFC out for a formal process to file, triage and address vulnerabilities in gRPC.
It is heavily adopted and influenced by similar processes that are in place for other Cloud Native Computing Foundation (CNCF) projects such as Kubernetes and Envoy.
Please review, and provide feedback and comments!
Thanks,
Kailash