search

cristoper / feedmixer

A self-hosted API to fetch and mix entries from Atom and RSS feeds (returns Atom, RSS, or JSON)
Do What The F*ck You Want To Public License
168 stars 10 forks source link

Add security section to readme? #12

Open cristoper opened 3 years ago

cristoper commented 3 years ago

Maybe mention that this service should not be granted access to any internal services which provide rss feeds (ie, to prevent server side forgery: https://www.agwa.name/blog/post/preventing_server_side_request_forgery_in_golang).