Security News
MCP Community Begins Work on Official MCP Metaregistry
The MCP community is launching an official registry to standardize AI tool discovery and let agents dynamically find and install MCP servers.
By Sarah Gooding - May 09, 2025
🚀 Big News: Socket Acquires Coana to Bring Reachability Analysis to Every Appsec Team.Learn more →
github.com/nerdzeu/nerdz-api
- Version published
- Created
NERDZ API
This repository contains the API of nerdz (incredible). Swagger-generated documentation available at: https://api.nerdz.eu/docs
Create a client
After having registered an application on NERDZ, you can use the OAuth2 authorization flow to get the correct tokens. The following is a minimal example in Python that shows how to interact with the NERDZ API.
import logging
from oauth2_client.credentials_manager import (CredentialManager,
ServiceInformation)
logging.basicConfig(level=logging.DEBUG)
_logger = logging.getLogger("client")
scopes = ["pms:read", "pms:write"]
service_information = ServiceInformation(
"https://api.nerdz.eu/v1/oauth2/authorize",
"https://api.nerdz.eu/v1/oauth2/token",
"1", # client_id
"$2a$07$F4HMU60OX0Tc5bsufMOY7OZBXjItcd7VzmN2r89Uwezf0Fasdasd", # client_secret
scopes,
)
manager = CredentialManager(service_information)
redirect_uri = "http://localhost:8080/oauth/code"
# Builds the authorization url and starts the local server according to the redirect_uri parameter
url = manager.init_authorize_code_process(redirect_uri, "state_test")
_logger.info("Open this url in your browser\n%s", url)
code = manager.wait_and_terminate_authorize_code_process()
_logger.debug("Code got = %s", code)
manager.init_with_authorize_code(redirect_uri, code)
_logger.debug("Access got = %s", manager._access_token)
Contributing
If you want to contribute, you should be at least a NERDZ user.
Developers can go to doc/CONTRIBUTING.md to see the developer's guide to NERDZ-API.
License
Copyright (C) 2016-2020 Paolo Galeone; nessuno@nerdz.eu
This program is free software: you can redistribute it and/or modify it under the terms of the GNU Affero General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.
This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Affero General Public License for more details.
You should have received a copy of the GNU Affero General Public License along with this program. If not, see http://www.gnu.org/licenses/.
FAQs
Unknown package
Package last updated on 14 Apr 2024
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Security News
Malicious npm Packages Use Telegram to Exfiltrate BullX Credentials
Socket uncovers an npm Trojan stealing crypto wallets and BullX credentials via obfuscated code and Telegram exfiltration.
By Kush Pandya - May 08, 2025
Research
Security News
Backdooring the IDE: Malicious npm Packages Hijack Cursor Editor on macOS
Malicious npm packages posing as developer tools target macOS Cursor IDE users, stealing credentials and modifying files to gain persistent backdoor access.
By Kirill Boychenko - May 07, 2025