Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
RedditAdsWindsorApi
is a python package makes it easy to get marketing data from Reddit into python.
Windsor.ai allows to get marketing data from any platform. It simplifies the complexity of dealing with multiple platforms, unlocking unified, valuable information in a format that matters to you. For more details checkout onboard.windsor.ai.
✅ Easy access to marketing data via windsor.ai APIs
✅ Lightweight (single dependency - requests)
✅ Supports both python 2.7+ and 3
✅ Google Analytics
✅ Google Ads
✅ Facebook Ads
✅ Facebook organic
✅ Bing Ads
✅ Linkedin Ads
✅ Hubspot
✅ Salesforce
✅ Google search console
✅ Criteo
✅ Tiktok
✅ Appnexus
✅ Campaign Manager
✅ Awin
✅ Adroll
✅ Shopify
✅ Klaviyo
✅ Airtable
✅ Intercom
✅ Zoho
✅ Idealo
✅ Appsflyer
✅ Adobe
pip install RedditAdsWindsorApi
You need to get a free API key to access windsor.ai's APIs. Register your account first and add a datasource like facebook ads and then get the API key. For more details check out our official API documentation and this article. Get the API key at https://onboard.windsor.ai
from RedditAdsWindsorApi.client import Client
from RedditAdsWindsorApi.enums import LAST_7D
from RedditAdsWindsorApi.enums import FIELD_SOURCE, FIELD_CAMPAIGN, FIELD_CLICKS
api_key = 'xxx' # Get it from your windsor.ai account. It's recommended to store and get this securely, for example an env variable.
# Setup a client object with the API key
client = Client(api_key)
# Call the /connectors API.
campaign_clicks = client.connectors(date_preset=LAST_7D, fields=[FIELD_SOURCE, FIELD_CAMPAIGN, FIELD_CLICKS])
# can also be run like:
campaign_clicks = client.connectors(date_preset='last_7d', fields=['date','clicks','spend'])
# Response will be a python dict (parsed from the json response recieved).
print(campaign_clicks)
[
{'date': '2021-04-15', 'clicks': 3, 'spend': 8.139999999999999},
{'date': '2021-04-15', 'clicks': 2, 'spend': 6.51},
{'date': '2021-04-15', 'clicks': 1, 'spend': 3.88},
{'date': '2021-04-15', 'clicks': 4, 'spend': 3.275311},
{'date': '2021-04-15', 'clicks': 6, 'spend': 1.408321}
],
# Get Google Ads data only
campaign_clicks = client.connectors(
connector="google_ads",
date_preset=LAST_7D,
fields=["account_name", "campaign", "clicks", "datasource", "source", "spend"]
)
# Get Facebook Ads data only
campaign_clicks = client.connectors(
connector="facebook",
date_preset=LAST_7D,
fields=["account_name", "campaign", "clicks", "datasource", "source", "spend"]
)
# Get list of all possible connectors (i.e: Google Ads, Facebook Ads, Twitter, Tik Tok etc.)
list_connectors = client.list_connectors
print(list_connectors)
['adform', 'adobe', 'adroll', 'all', 'amazon_ads', 'amazon_s3', 'amazon_sp', 'apple_search_ads', 'appnexus', 'appsflyer', 'awin', 'bing', 'cm360', 'criteo' 'currency_conversion', 'daisycon', 'dv360', 'facebook', 'facebook_leads', 'facebook_organic', 'gmailcsv', 'google_ad_manager', 'google_ads', 'google_pagespeed', 'googleanalytics', 'googleanalytics4', 'googlesheets', 'hubspot', 'idealo', 'instagram', 'klaviyo', 'linkedin', 'linkedin_organic', 'mailchimp', 'outbrain', 'pinterest', 'quora', 'reddit', 'rtbhouse', 'salesforce', 'searchconsole', 'sftp', 'shopify', 'Reddit', 'stripe', 'taboola', 'tiktok', 'twitter', 'twitter_organic', 'vertaa', 'zoho']
# Sample with date specific ranges.
dataset_with_ranges = client.connectors(
date_from="2022-10-18",
date_to="2022-10-20",
fields=["account_name", "campaign", "clicks", "datasource", "source", "spend", "date"]
)
The full list of fields that the package accepts is given in https://windsor.ai/connector/all/. Fields can be common to all the connectors or specific for each company.
FAQs
Easy access to windsor.ai Reddit APIs
We found that RedditAdsWindsorApi demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.