Research
Security News
Malicious npm Package Targets Solana Developers and Hijacks Funds
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
|Build Status| |Coverage Status| |PyPI Version|
httplib2shim
is a wrapper over httplib2
that uses urllib3
to perform HTTP requests. This library is intended to help existing legacy libraries (and their users) to migrate away from httplib2
. It is not intended to be a general purpose replacement for httplib2
. It does not support every feature and edge case for httplib2
, although contributions are welcome in order to help us cover these cases.
Presently, httplib2shim
passes the test suite for httplib2
. A few non-applicable tests were disabled, and it's very possible that the tests do not account for behavior that is depended on by clients.
It's recommended to install urllib3[secure]
before installing httplib2shim
:
.. code:: bash
pip install urllib3[secure] httplib2shim
Usage is straightforward. You can substitute httplib2shim.Http
anywhere httplib2.Http
is used:
.. code:: python
import httplib2shim
from oauth2client.client import GoogleCredentials
credentials = GoogleCredentials.get_application_default()
http = httplib2shim.Http()
credentials.authorize(http)
# http is now authorized with OAuth2 credentials and uses urllib3 under
# the covers.
Alternatively, if you do not control the construction of the Http
object, you can use httplib2shim.patch()
to monkey-patch the httplib2.Http
class to point to httplib2shim.Http()
:
.. code:: python
import httplib2shim
httplib2shim.patch()
from googleapiclient.discovery import build
from oauth2client.client import GoogleCredentials
credentials = GoogleCredentials.get_application_default()
# build constructs its own httplib2.Http instance.
service = build('compute', 'v1', credentials=credentials)
# service.http is now a httplib2shim.Http object.
Http
constructor will be accepted, but may not make a difference. For instance, ca_certs
will have no effect. Instead, pass a urllib3.Pool
instance http = httplib2shim.Http(pool=my_pool)
.Http.add_certificate
is a no-op and will warn.CONTRIBUTING.md
_LICENSE
_.. _LICENSE: https://github.com/GoogleCloudPlatform/httplib2shim/blob/master/LICENSE .. _CONTRIBUTING.md: https://github.com/GoogleCloudPlatform/httplib2shim/blob/master/CONTRIBUTING.md
.. |Build Status| image:: https://travis-ci.org/GoogleCloudPlatform/httplib2shim.svg :target: https://travis-ci.org/GoogleCloudPlatform/httplib2shim .. |Coverage Status| image:: https://coveralls.io/repos/GoogleCloudPlatform/httplib2shim/badge.svg?branch=master&service=github :target: https://coveralls.io/github/GoogleCloudPlatform/httplib2shim?branch=master .. |PyPI Version| image:: https://img.shields.io/pypi/v/httplib2shim.svg :target: https://pypi.python.org/pypi/httplib2shim
FAQs
A wrapper over urllib3 that matches httplib2's interface
We found that httplib2shim demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
A malicious npm package targets Solana developers, rerouting funds in 2% of transactions to a hardcoded address.
Security News
Research
Socket researchers have discovered malicious npm packages targeting crypto developers, stealing credentials and wallet data using spyware delivered through typosquats of popular cryptographic libraries.
Security News
Socket's package search now displays weekly downloads for npm packages, helping developers quickly assess popularity and make more informed decisions.