cthoyt
commented
5 years ago Is flasgger still under development, or is it stale?
Open scolby33 opened 5 years ago
cthoyt
commented
5 years ago Is flasgger still under development, or is it stale?
scolby33
commented
5 years ago Last commit in November 2018. In any case, it's less their fault than pyYAML's anyway. Maybe I'll open a pull over at flasgger.
Disabled for now because it pulls in an old version of pyYAML that has a security vulnerability.
https://nvd.nist.gov/vuln/detail/CVE-2017-18342
It can be re-enabled when either pyYAML has released a non-beta fixed version or when flasgger switches to
yaml.safe_loadeverywhere instead ofyaml.load.