@alcinnz
Static only is too limited IMO. Dynamic routes are required for creating interactive tools/experiences. You're right of course that it increases the attack surface substantially. That's why on my project (https://Dropserver.org) each app runs in a sandbox, with strictly limited access to some read-only dirs, write access to only one app dir, and no network listeners.
I know sandboxes can never be perfect, but they significantly raise the bar for a breach.
@floppy
Chirp! is a social network. It runs on GNU social, version 2.0.1-beta0, available under the GNU Affero General Public License.
All Chirp! content and data are available under the Creative Commons Attribution 3.0 license.