Skip to content

Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Search

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

Sign in

Sign up

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

cosmos / cosmos-sdk Public

Notifications You must be signed in to change notification settings
Fork 3.9k
Star 6.5k

Code
Issues 272
Pull requests 40
Discussions
Actions
Projects
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Discussions
Actions
Projects
Security
Insights

Security: cosmos/cosmos-sdk

Security Navigation

Overview
Reporting
- Policy
- Advisories

Security Advisories

View information about security vulnerabilities from this repository's maintainers.

ISA-2025-002: x/group can halt when erroring in EndBlocker
GHSA-47ww-ff84-4jrg published Mar 12, 2025 by aljo242

High
ASA-2025-003: Groups module can halt chain when handling a malicious proposal
GHSA-x5vx-95h7-rv4p published Feb 20, 2025 by aljo242

High
ASA-2024-0012, ASA-2024-0013: CosmosSDK: Transaction decoding may result in a stack overflow or resource exhaustion
GHSA-8wcc-m6j2-qxvm published Dec 16, 2024 by julienrbrt

High
ASA-2024-010: cosmossdk.io/math: Mismatched bit-length validation in sdk.Int and sdk.Dec can lead to panic
GHSA-7225-m954-23v7 published Nov 20, 2024 by julienrbrt

High
ASA-2024-006: ValidateVoteExtensions helper function may allow incorrect voting power assumptions
GHSA-95rx-m9m5-m94v published Mar 12, 2024 by mizmo18

High
ASA-2024-002: Default `PrepareProposalHandler` may produce invalid proposals when used with default `SenderNonceMempool`
GHSA-2557-x9mg-76w8 published Feb 20, 2024 by mizmo18

Moderate
ASA-2024-003: Missing `BlockedAddressed` Validation in Vesting Module
GHSA-4j93-fm92-rp4m published Feb 20, 2024 by mizmo18

Moderate
ASA-2024-005: Potential slashing evasion during re-delegation
GHSA-86h5-xcpx-cfqc published Feb 27, 2024 by mizmo18

Low
ASA-2023-001: Cosmovisor
GHSA-23px-mw2p-46qm published Sep 6, 2023 by jessysaurusrex

Moderate
Barberry Security Advisory - regarding x/auth periodic vesting accounts
GHSA-j2cr-jc39-wpx5 published Jul 7, 2023 by greg-szabo

Moderate

Previous 1 2 Next

Footer

Footer navigation

Terms
Privacy
Security
Status
Docs
Contact

You can’t perform that action at this time.