critical or high severity. We found a vulnerability in a 3rd-party dependency which was assigned a CVE1 of high severity, however it did not impact Dapr in a critical or high severity manner, and affects dependency tree. 1 CVE-2023-37475 2 Dapr security audit 2023 Results summarised 7 security issues found All issues except for 1 have been fixed Five fuzzers added to Daprs fuzzing suite 1 CVE assigned Threat EP000: Operation Aurora | HACKING GOOGLE; https://www.youtube.com/watch?v=przDcQe6n5o 3 For example CVE-2022-24760 11 Dapr security audit 2023 - for example write permissions to an S3 bucket. A threat