| Name | security JSON |
| Version |
1.3.1
JSON |
| download |
| home_page | None |
| Summary | The security toolkit for the Python community |
| upload_time | 2024-06-28 13:20:52 |
| maintainer | None |
| docs_url | None |
| author | None |
| requires_python | >=3.8 |
| license | MIT License Copyright (c) 2023 Dani Litovsky Alcala and others at Pixee Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. |
| keywords |
security
appsec
|
| VCS |
 |
| bugtrack_url |
|
| requirements |
No requirements were recorded.
|
| Travis-CI |
No Travis.
|
| coveralls test coverage |
No coveralls.
|
# security
Security toolkit for the Python community
This library includes a number of code security controls for various application security vulnerability categories. It can be used directly by programmers, but you may have been introduced to it by having it directly added to your code by automation.
Many of the APIs provided are meant to be drop-in replacements that either offer more secure defaults, harden against common attacks, or at least surface the security questions developers should answer when using risky APIs.
## Installation
To install this package from PyPI, use the following command:
`pip install security`
## Running tests
DO NOT RUN TESTS LOCALLY WITHOUT A VM/CONTAINER.
Tests will try to run "dangerous" commands (i.e. curl, netcat, etc.) and try to access sensitive files (i.e. sudoers, passwd, etc.). We do so to test the our abilities to detect and filter these types of attacks.
While all these commands are devised as innocuous, it is still not a good idea to risk exposure. They also require a specific environment to pass. We recommend using something like [act](https://github.com/nektos/act) to run the github workflow locally within a container for local development.
Raw data
{
"_id": null,
"home_page": null,
"name": "security",
"maintainer": null,
"docs_url": null,
"requires_python": ">=3.8",
"maintainer_email": null,
"keywords": "security, appsec",
"author": null,
"author_email": "Pixee <python@pixee.ai>",
"download_url": "https://files.pythonhosted.org/packages/fa/ac/5ee0cd528ee9e5f166b44bc98a3c219fb93418ed48a88eb36a868c596239/security-1.3.1.tar.gz",
"platform": null,
"description": "# security\nSecurity toolkit for the Python community\n\nThis library includes a number of code security controls for various application security vulnerability categories. It can be used directly by programmers, but you may have been introduced to it by having it directly added to your code by automation.\n\nMany of the APIs provided are meant to be drop-in replacements that either offer more secure defaults, harden against common attacks, or at least surface the security questions developers should answer when using risky APIs.\n\n## Installation\n\nTo install this package from PyPI, use the following command:\n\n`pip install security`\n\n## Running tests\n\nDO NOT RUN TESTS LOCALLY WITHOUT A VM/CONTAINER.\n\nTests will try to run \"dangerous\" commands (i.e. curl, netcat, etc.) and try to access sensitive files (i.e. sudoers, passwd, etc.). We do so to test the our abilities to detect and filter these types of attacks.\n\nWhile all these commands are devised as innocuous, it is still not a good idea to risk exposure. They also require a specific environment to pass. We recommend using something like [act](https://github.com/nektos/act) to run the github workflow locally within a container for local development.\n",
"bugtrack_url": null,
"license": "MIT License Copyright (c) 2023 Dani Litovsky Alcala and others at Pixee Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the \"Software\"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. ",
"summary": "The security toolkit for the Python community",
"version": "1.3.1",
"project_urls": {
"Homepage": "https://github.com/pixee/python-security",
"Repository": "https://github.com/pixee/python-security"
},
"split_keywords": [
"security",
" appsec"
],
"urls": [
{
"comment_text": "",
"digests": {
"blake2b_256": "d721b65c9f876fce298d6bd5411f1cde7fc889ea90d7bb7d9eaa1fcbb0920b18",
"md5": "5bf0d94b086b58e9f360d53b19c4b2ae",
"sha256": "9df6e75393f494ca3fd06dac3ed02f3c4fed60842b13fd00757b026cedff426b"
},
"downloads": -1,
"filename": "security-1.3.1-py3-none-any.whl",
"has_sig": false,
"md5_digest": "5bf0d94b086b58e9f360d53b19c4b2ae",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": ">=3.8",
"size": 13409,
"upload_time": "2024-06-28T13:20:51",
"upload_time_iso_8601": "2024-06-28T13:20:51.410335Z",
"url": "https://files.pythonhosted.org/packages/d7/21/b65c9f876fce298d6bd5411f1cde7fc889ea90d7bb7d9eaa1fcbb0920b18/security-1.3.1-py3-none-any.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": "",
"digests": {
"blake2b_256": "faac5ee0cd528ee9e5f166b44bc98a3c219fb93418ed48a88eb36a868c596239",
"md5": "7edb638705e8b3975f86c48e5a2d1a8a",
"sha256": "7ec0853c74c7dd22a9967bda087db5d4a7df58253574e60ec475c660f839da6d"
},
"downloads": -1,
"filename": "security-1.3.1.tar.gz",
"has_sig": false,
"md5_digest": "7edb638705e8b3975f86c48e5a2d1a8a",
"packagetype": "sdist",
"python_version": "source",
"requires_python": ">=3.8",
"size": 27917,
"upload_time": "2024-06-28T13:20:52",
"upload_time_iso_8601": "2024-06-28T13:20:52.707893Z",
"url": "https://files.pythonhosted.org/packages/fa/ac/5ee0cd528ee9e5f166b44bc98a3c219fb93418ed48a88eb36a868c596239/security-1.3.1.tar.gz",
"yanked": false,
"yanked_reason": null
}
],
"upload_time": "2024-06-28 13:20:52",
"github": true,
"gitlab": false,
"bitbucket": false,
"codeberg": false,
"github_user": "pixee",
"github_project": "python-security",
"travis_ci": false,
"coveralls": false,
"github_actions": true,
"lcname": "security"
}
