TL;DREd Morley from Mozilla reported a security issue.I found some other security issues.These issues was fixed in webpack-dev-server@^2.4.3, webpack-dev-server@^1.16.4, webpack-dev-middleware@^1.10.2.Fixes are breaking changes for insecure configurations.Don’t use disableHostCheck or Access-Control-Allow-Origin: *DisclaimerI’m not a security expert so maybe some details are incorrect/inaccure. Th