Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Mathematical algorithms and tools to use within CoMet toolkit.
It's always recommended to make a virtual environment for each of your python projects. Use your preferred virtual environment manager if you want and activate it for the rest of these commands.
If you are using conda you can create and activate your environment using::
conda create -n yourenvname -k python=3.x
followed by::
conda activate yourenvname (activate environment in windows)
or::
source activate yourenvname (activate environment on a UNIX operating system)
You can also use venv. If you're unfamiliar, read https://realpython.com/python-virtual-environments-a-primer/. You can set one up using::
python -m venv venv
and then activate it on Windows by using venv/Scripts/activate
.
Install your package and its dependancies by using::
pip install -e .
For developing the package, you'll want to install the pre-commit hooks as well. Type::
pre-commit install
Note that from now on when you commit, black
will check your code for styling
errors. If it finds any it will correct them, but the commit will be aborted.
This is so that you can check its work before you continue. If you're happy,
just commit again.
Running the test suite is possible by running pytest
.
comet_maths
was written by Pieter De Vis <pieter.de.vis@npl.co.uk>
_.
FAQs
Mathematical algorithms and tools to use within CoMet toolkit.
We found that comet-maths demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.