Security News
PyPI Introduces Digital Attestations to Strengthen Python Package Security
PyPI now supports digital attestations, enhancing security and trust by allowing package maintainers to verify the authenticity of Python packages.
An express-based http helper lib.
Ripped from the guts of Anvil.
Simple navigate to /_autohost to review the current set of resources:
var host = require( 'autohost' )();
host.init();
Configuration can be provided optionally to the init call or during instantiation after the require. The object literal follows the format:
{
processes: 1, // # of processes to spawn - not currently in use
static: './public', // where to host static resources from, default value shown
resources: './resource', // where to load resource modules from, default value shown
port: 8800, // what port to host at, default shown
allowedOrigin: 'leankit.com', // used to filter incoming web socket connections based on origin
websockets: true // enables websockets
}
Resources are expected to be simple modules that return a parameterless function resulting in a JS literal that follows the format:
{
name: 'resource-name',
resources: '', // relative path to static assets for this resource
actions: [
{
alias: 'send', // not presently utilized
verb: 'get', // http verb
topic: 'send', // topic segment appended the resource name
path: '', // url pattern appended to the resource name
handle: function( envelope ) {
// envelope.data, envelope.headers and envelope.params may contain
// information about the request/message received
// envelope reply takes a object literal with data property for
// http body|websocket message
}
}
]
}
Lots of methods are available but not generally intended for use outside the library. Other than init, there are two methods for interacting with connected websocket clients.
MIT License - http://opensource.org/licenses/MIT
FAQs
Resource driven, transport agnostic host
The npm package autohost receives a total of 1,448 weekly downloads. As such, autohost popularity was classified as popular.
We found that autohost demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
PyPI now supports digital attestations, enhancing security and trust by allowing package maintainers to verify the authenticity of Python packages.
Security News
GitHub removed 27 malicious pull requests attempting to inject harmful code across multiple open source repositories, in another round of low-effort attacks.
Security News
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.