Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
.ini
file with access restrictions of your home directory.XTBpy relies on the API Version 2.5.0
Please consider that XTBpy is still in Alpha stage and needs more development to run stable and reliant.
You can install the XTB API Python Wrapper via pip:
pip install XTBpy
.XTBpy/user.ini
is created in your home directory.user.ini
.XTBpy includes all Data commands of the XTB API exept:
ping
This command is automatically executed in the background.
All available data commands are listed below with their Input arguments and format.
getAllSymbols()
getCalendar()
getChartLastRequest(symbol: str, period: str, start: datetime=None)
getChartRangeRequest(symbol: str, period: str, start: datetime=None, end: datetime=None, ticks: int=0)
getCommissionDef(symbol: str, volume: float)
getCurrentUserData()
getIbsHistory(start: datetime, end: datetime)
getMarginLevel()
getMarginTrade(symbol: str, volume: float)
getNews(start: datetime, end: datetime)
getProfitCalculation(symbol: str, volume: float, openPrice: float, closePrice: float, cmd: int)
getServerTime()
getStepRules()
getSymbol(symbol: str)
getTickPrices(symbols: list, time: datetime, level: int=-1)
getTradeRecords(orders: list)
getTrades(openedOnly: bool)
getTradeHistory(start: datetime, end: datetime)
getTradingHours(symbols: list)
getVersion()
tradeTransaction(cmd: int, customComment: str, expiration: datetime, offset: int, order: int, price: float, sl: float, symbol: str, tp: float, type: int, volume: float)
tradeTransactionStatus(order: int)
The return value will always be a dict
(dictionary) with the key-value pairs of the "returnData" key of the API JSON response file.
You will find a full documentation of all API data commands here: xAPI Protocol Documentation
For simplicity certain argument formats differ from the original API commands:
When commands have a time value as an argument, the time must be entered as a datetime
object.
Datetime objects, which are defined in your operating system's time zone, will be automatically converted to a UTC-UX timestamp which is required by the XTB API.
When commands include a period value as an argument, it must be passed as an item of the following string.
"M1", "M5", "M15", "M30", "H1", "H4", "D1", "W1", "MN1"
The following example will show how to retrieve data with XTBpy. You will find this example also in tests/test_get_symbol.py.
import XTB
# Creating Wrapper
XTBData=XTB.Wrapper(demo=DEMO, logger=logger)
# getting data for the symbols
symbol=XTBData.getSymbol(symbol='ETHEREUM')
print(symbol)
XTBpy includes all Streaming commands of the XTB API exept:
ping
getKeepAlive
This two commands are automatically executed in the background.
Unlike the official API, where streaming commands are named get Command , the XTBpy library uses the stream Command naming convention. This change was necessary to avoid conflicts caused by the official API's duplicate command names.
All available streaming commands are listed below with their Input arguments and format.
streamBalance()
streamCandles(symbol: str)
streamNews()
streamProfits()
streamTickPrices(symbol: str, minArrivalTime: int, maxLevel: int=1)
streamTrades()
streamTradeStatus()
The return value will be a dictionary, containing the following elements:
df
(pandas.DataFrame): A DataFrame that contains the stream data.lock
(threading.Lock): A lock object for synchronization of the DataFrame access.thread
(Thread): Starting the thread will terminate the stream.The header of the dataframe will contain all keys of the "data" key of the JSON response file.
The streamed values will be in the row of the DataFrame. The Dataframe will be dynamically updated by XTBpy and has a maximum of 1000 rows. Older values will be deleted from the DataFrame. The newest values can be found at the bottom row.
Please see the example below to find out how to access the values in the DataFrame.
You will find a full documentation of all API stream commands here: xAPI Protocol Documentation
The Pandas DataFrame documentation can be found here: Pandas
The following example will show how to stream data with XTBpy. You will find this example also in tests/test_stream_ticker.py
import XTB
# Creating Wrapper
XTBData=XTB.Wrapper(demo=DEMO, logger=logger)
# Streaming data an reading the df
exchange=XTBData.streamTickPrices(symbol='ETHEREUM', minArrivalTime=0, maxLevel=1)
# Streaming data an reading the df
later = datetime.now() + timedelta(seconds=60*1)
while datetime.now() < later:
exchange['lock'].acquire(blocking=True)
if not exchange['df'].empty:
print(exchange['df'].to_string(index=False, header=False))
exchange['df'] = exchange['df'].iloc[0:0]
exchange['lock'].release()
time.sleep(1)
exchange['thread'].start()
# Close Wrapper
XTBData.delete()
Improvements to the XTBpy project are welcome, whether it's a request, a suggestion, or a bug report. Just reach out! Visit also the Giuthub repository of XTBpy: Github
This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.
This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with this program. If not, see GNU GPL 3
FAQs
A wrapper for the XTB API
We found that XTBpy demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.