Add note about server.scm probably being insecure

2026-03-02 21:50:39 +00:00
parent b5c4070daf
commit c1c1db7b51
1 changed files with 5 additions and 0 deletions
--- a/README.md
+++ b/README.md
@@ -38,6 +38,11 @@ and use the system from there.
 cross-origin isolation headers required for `SharedMemoryBuffer` use.
 You could use any HTTP server that sets these headers.

+You should **definitely not** use the development server to serve the
+application on the open internet; I just hacked it together for
+testing on localhost during development and it's probably hilariously
+insecure.
+
 ## Peripherals

 ### Terminal