Python Dev-Ops artwork

Real Python Security and Reporting

If you find a security hole, please let us know at We try to respond (with fixes!) as soon as possible, and really appreciate the help.

Thanks to the following people who have discovered and responsibly disclosed security holes in Real Python:

2020-05-30 Kishan Kumar

  • DMARC was configured in a way that would not automatically flag spoofed emails as spam in Gmail

2020-05-07 Amit Kumar

  • Missing rate limit for email verification could lead to email flooding