Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Plugin for beets (http://beets.io) to replace stock beatport plugin which is not yet compatible with Beatport API v4.
.. image:: http://img.shields.io/pypi/v/beets-beatport4.svg :target: https://pypi.python.org/pypi/beets-beatport4
Plugin for beets <https://github.com/beetbox/beets>
_ to replace stock beatport plugin and use Beatport API v4 as an
autotagger source.
As Beatport had killed their API v3, the stock beatport plugin does not work anymore. It is also currently not possible to request the access to the API "normal" way (by using your client credentials or API token generated by Beatport), so I have found workaround that uses public API client id used for Beatport docs frontend <https://api.beatport.com/v4/docs/>
_ and updated the code to use the new specification.
For more info, see the discussion on this issue: https://github.com/beetbox/beets/issues/3862
I have also opened a pull request in the official beets repository (https://github.com/beetbox/beets/pull/4477), so if it gets merged, I am probably going to take down this plugin.
Install this plugin with
..
$ pip install beets-beatport4
and add beatport4
to the plugins
list in your beets config file.
There are two ways of acquiring user access token to the Beatport v4 API using this plugin.
Method 1: username and password
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
This method is fully automatic and relies on holding your Beatport username
and password inside your beets config file.
It will authorize to the Beatport API using authorization_code
grant type
and client_id
provided by beatport for the sake of their swagger-ui
frontend in which you can test their API: https://api.beatport.com/v4/docs/
By default, client_id
is scrapped automatically from the above URL.
Alternatively, you can also pass it via plugin configuration.
Steps:
beatport4
plugin to your beets/config.yaml
plugins list.. code-block:: yaml
beatport4:
art: yes
art_overwrite: no
username: <YOUR_BEATPORT_USERNAME>
password: <YOUR_BEATPORT_PASSWORD>
Method 2. copy token from the browser ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ You will probably want to use this method if you don't want to store your credentials unencrypted within the config file. Also, it will be helpful if for any reason something goes wrong during the username/password authorization process.
This is also a fallback method if you provide wrong credentials in the config.
Steps:
beatport4
plugin to your beets/config.yaml
plugins listhttps://api.beatport.com/v4/auth/o/token/
beatport_token.json
file next to your beets/config.yaml
- you can check the path by running beet config --paths
command)Additionally, this plugin has implemented separate art fetching and embedding.
Unlike
fetchart plugin <https://beets.readthedocs.io/en/stable/plugins/fetchart.html>
,
it handles both singletons, but it will not work if you choose candidate source
other than Beatport.
Also, it does not require enabling
fetchart <https://beets.readthedocs.io/en/stable/plugins/fetchart.html>
or
embedart <https://beets.readthedocs.io/en/stable/plugins/embedart.html>
_
plugins, as it uses
beets.art module <https://github.com/beetbox/beets/blob/master/beets/art.py>
_
shipped with the core library.
Under the hood, it uses image URL for the track's release, exposed by the Beatport API.
You can enable this feature via configuration (it is disabled by default):
.. code-block:: yaml
beatport4:
art: yes
By default, if a track already contains an art, it will not be overwritten. Again, you can force such behaviour via configuration:
.. code-block:: yaml
beatport4:
art: yes
art_overwrite: yes
Image size ^^^^^^^^^^ Original images from Beatport might have big resolution and size, but thanks to Beatport's dynamic image URIs, it is possible to fetch image already resized by Beatport backend, saving the bandwidth and resources on resizing images locally. To specify the dynamic width and height, just pass it via configuration:
.. code-block:: yaml
beatport4:
art: yes
art_width: 250 # don't specify or 0 to disable
art_height: 250 # don't specify or 0 to disable
.. code-block:: yaml
beatport4:
art: no
art_overwrite: no
art_width: <WIDTH_PX>
art_height: <HEIGHT_PX>
username: <YOUR_BEATPORT_USERNAME>
password: <YOUR_BEATPORT_PASSWORD>
client_id: <BEATPORT_API_CLIENT_ID> # optional, you can set it, but it should be scrapped automatically from the docs
Apart from the above, plugin should work exactly the same way as the stock one, so please refer to the official documentation <https://beets.readthedocs.io/en/v1.6.0/plugins/beatport.html>
_
FAQs
Plugin for beets (http://beets.io) to replace stock beatport plugin which is not yet compatible with Beatport API v4.
We found that beets-beatport4 demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.