Christian Heimes <li...@cheimes.de> added the comment:
http.server is out of scope for CVEs. The module is not designed for security-sensitive usage and explicitly documented as insecure and not suitable for production use: https://docs.python.org/3/library/http.server.html#module-http.server > Warning: http.server is not recommended for production. It only implements > basic security checks. ---------- nosy: +christian.heimes _______________________________________ Python tracker <rep...@bugs.python.org> <https://bugs.python.org/issue44022> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
