—
GO-2026-5420
kubernetes-graphql-gateway: GraphQL Endpoint Vulnerable to Authenticated Denial-of-Service via Unrestricted Query Execution in github.com/platform-mesh/kubernetes-graphql-gateway
Details
kubernetes-graphql-gateway: GraphQL Endpoint Vulnerable to Authenticated Denial-of-Service via Unrestricted Query Execution in github.com/platform-mesh/kubernetes-graphql-gateway
Are you affected?
Enter the version of the package you're using.
Affected packages
Go / github.com/platform-mesh/kubernetes-graphql-gateway
Introduced in:
0 Fixed in: 1.2.9 Fix
go get github.com/platform-mesh/kubernetes-graphql-gateway@v1.2.9 References
- https://github.com/platform-mesh/kubernetes-graphql-gateway/security/advisories/GHSA-h9mw-h4qc-f5jf [ADVISORY]
- https://github.com/platform-mesh/kubernetes-graphql-gateway/commit/61509656fbab2dbf158f634d6700478ee94221ab [FIX]
- https://github.com/platform-mesh/kubernetes-graphql-gateway/releases/tag/v1.2.9 [WEB]