Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
generator-django-rest
Advanced tools
A Yeoman generator for a Django REST API that makes you efficient, includes features you need in a typical modern web app, yet keeps things simple.
A Yeoman generator for a Django REST API (and optionally a React SPA) that makes you efficient, includes features you need in a typical modern web app, yet keeps things simple.
Note: the project is still considered to be in beta until I get a chance to test it on more apps. That said, I am using it in my own projects :)
The philosophy is to include features useful across projects that are tedious to set up from scratch. Some of the cool ones are:
quick to launch 🚀 – start a new project and deploy it to Heroku in 3 commands:
yo django-rest
./scripts/devsetup.sh
./scripts/deploy.sh
productive ⚡️ – start the Django, DB & optionally frontend dev servers easily
./scripts/dev.sh
sane logging 📜 – defaults to fail nicely
modern JS 🦄 – serve static files on / using django-spa & Whitenoise for nice single-page apps using React / Angular2 / Vue…
self-sufficient ⛵️ - option to automatically set up a create-react-app frontend for you with all the integration settings under the mantra one app, one repo, one dyno
Heroku-friendly packaging 📦 – if you're using the built-in React frontend,
deploy.sh
minifies the frontend and packages it up with Django
into a separate prod branch ready for deployment as a Django web app
(that gets deployed to Heroku by default)
12-factor config 🤓 – environment variable configuration
REDIS_URL=redis://localhost:6379/0
CELERY_RESULT_BACKEND = env('REDIS_URL')
batteries included 🔋
familiar 🐶 – check out the rough
project file layout,
it's much like django-admin startproject myproject
would set it up
(only repeats the project name twice,
i.e. ~/code/myproject/myproject/settigns.py)
To begin, you need to install node.js. Once you have that, you need Yeoman pre-installed. Yeoman lives in the npm package repository. You only have to ask for him once, then he packs up and moves into your hard drive.
npm install -g yo
Then, we need the django-rest generator, i.e. plug-in. You install generator-django-rest from npm.
npm install -g generator-django-rest
Finally, for every new project you would initiate the generator in an empty folder.
mkdir myproject
cd myproject
yo django-rest
Now check HACKING.md for extra instructions.
MIT
FAQs
A Yeoman generator for a Django REST API that makes you efficient, includes features you need in a typical modern web app, yet keeps things simple.
The npm package generator-django-rest receives a total of 5 weekly downloads. As such, generator-django-rest popularity was classified as not popular.
We found that generator-django-rest demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.