Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
This python package provides functionality for Jira Test Management (tm4j).
To install adaptavist, you can use the following command(s):
python -m pip install adaptavist
To uninstall adaptavist, you can use the following command:
python -m pip uninstall adaptavist
adaptavist is using the REST API of Adaptavist Test Management for Jira Server (see https://docs.adaptavist.io/tm4j/server/api/) and Jira's internal REST API, both with HTTP Basic authentication.
In order to access Adaptavist/Jira, valid credentials are necessary. In addition, getpass.getuser().lower()
must be a known Jira user as well.
from adaptavist import Adaptavist
# create a new instance
atm = Adaptavist(jira_server, jira_username, jira_password)
# create a test plan
test_plan_key = atm.create_test_plan(project_key="TEST", test_plan_name="my test plan")
# create a test cycle (formerly test run) with a set of test cases and add it to test plan
test_run_key = atm.create_test_run(project_key="TEST", test_run_name="my test cycle", test_cases=["TEST-T1"], test_plan_key=test_plan_key)
# as test cycle creation also creates/initializes test results, we can just edit these
atm.edit_test_script_status(test_run_key=test_run_key, test_case_key="TEST-T1", step=1, status="Pass")
# (optional) edit/overwrite the overall execution status of the test case (by default this is done automatically when editing status of a single step)
atm.edit_test_result_status(test_run_key=test_run_key, test_case_key="TEST-T1", status="Pass")
There's much more inside (like adding attachments, creating folders and environments, cloning test cycles). Additional code examples will follow.
FAQs
python package providing functionality for Jira Test Management (tm4j)
We found that adaptavist demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.