Security News
PyPI’s New Archival Feature Closes a Major Security Gap
PyPI now allows maintainers to archive projects, improving security and helping users make informed decisions about their dependencies.
By Sarah Gooding - Jan 30, 2025
New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
- Maintainers
- 1
2d6io-cryptobot
Dependencies
This project uses @danpaquin's excellent coinbasepro-python
We also use Flask to generate a restful endpoint to serve our data
pip3 install cbpro
pip3 install flask
We also use Angular and NPM to serve a web interface for the application. You will need to have the latest version of node installed.
Run the following installs once node is complete (see the docs for more info):
npm install -g @angular/cli
Config
Rename config_example.ini to config.ini and update it with the right values.
UNDER NO CIRCUMSTANCES SHOULD config.ini BE UPLOADED TO THE REPO OR SHARED WITH OTHERS
The config is already in the .gitignore so the only way this will happen is if you modify that. Don't do it.
Running
Restful Services
To run from a command line run the following:
python3 app.py
This will start the flask restful service, which can be opened from your localhost
This restful service has several endpoints:
- /api/wallet - Returns the current state of your wallet
- /api/analyze_coins - Runs a single pass of the coin analysis process using the data feed from Coinbase
Web Interface
To run the web interface, navigate from a console to /interface and run the following:
ng serve
Navigate to your local angular server and you will see the wallet interface.
To start the analysis service, click Start Monitoring. To disable the service, click Stop Monitoring
Donate
Like the project? Donate!
Wallet: 0xe6f912cba2D254511170884AF4637689BE8758E6
FAQs
A crypto buy/sell analysis tool
We found that 2d6io-cryptobot demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
Security News
North Korean APT Lazarus Targets Developers with Malicious npm Package
Malicious npm package postcss-optimizer delivers BeaverTail malware, targeting developer systems; similarities to past campaigns suggest a North Korean connection.
By Kirill Boychenko, Peter van der Zee - Jan 29, 2025
Security News
CISA Brings KEV Data to GitHub
CISA's KEV data is now on GitHub, offering easier access, API integration, commit history tracking, and automated updates for security teams and researchers.
By Sarah Gooding - Jan 29, 2025