Would it make sense to be more conservative with 3rdparty deps on the authzed-go package. For compliance I need to mirror the tree and e.g. using stringz is not worth the dep imho (https://github.com/authzed/authzed-go/search?q=stringz). I think explicit code here is more readable, then a utility function most people won't know