PyWaitress

waitress is a production WSGI server. serve() with host='0.0.0.0' exposes the app to all interfaces — finding for internal-only services.

1 sink

Taint flow0 sources → 1 sink

Sinks — dangerous call

.serve()Serves a WSGI app

Sinks

— dangerous functions taint must not reach

.serve()Sink

Signature

waitress.serve(app, host='0.0.0.0', port=8080, ...) -> None

Serves a WSGI app. Finding when bound to 0.0.0.0 for internal apps.

FQN	Field
waitress	fqns[0]

Wrong FQN → 0 findings. Verify with: change fqns to garbage → must produce 0 results.

rule.py

from codepathfinder.go_rule import PyWaitress