Security News
pnpm 10.0.0 Blocks Lifecycle Scripts by Default
pnpm 10 blocks lifecycle scripts by default to improve security, addressing supply chain attack risks but sparking debate over compatibility and workflow changes.
A microservices framework for Python that lets service developers concentrate on application logic and encourages testability.
.. image:: https://github.com/nameko/nameko/actions/workflows/ci.yaml/badge.svg
[nah-meh-koh]
.. pull-quote ::
A microservices framework for Python that lets service developers concentrate on application logic and encourages testability.
A nameko service is just a class:
.. code-block:: python
# helloworld.py
from nameko.rpc import rpc
class GreetingService:
name = "greeting_service"
@rpc
def hello(self, name):
return "Hello, {}!".format(name)
You can run it in a shell:
.. code-block:: shell
$ nameko run helloworld
starting services: greeting_service
...
And play with it from another:
.. code-block:: pycon
$ nameko shell
>>> n.rpc.greeting_service.hello(name="ナメコ")
'Hello, ナメコ!'
documentation <http://nameko.readthedocs.io>
_.For help, comments or questions, please go to <https://discourse.nameko.io/>
_.
Available as part of the Tidelift Subscription.
The maintainers of Nameko and thousands of other packages are working with Tidelift to deliver commercial support and maintenance for the open source dependencies you use to build your applications. Save time, reduce risk, and improve code health, while paying the maintainers of the exact dependencies you use. Learn more. <https://tidelift.com/subscription/pkg/pypi-nameko?utm_source=pypi-nameko&utm_medium=referral&utm_campaign=enterprise&utm_term=repo>
_
To report a security vulnerability, please use the Tidelift security contact <https://tidelift.com/security>
_. Tidelift will coordinate the fix and disclosure.
Apache 2.0. See LICENSE for details.
FAQs
A microservices framework for Python that lets service developers concentrate on application logic and encourages testability.
We found that nameko demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 5 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
pnpm 10 blocks lifecycle scripts by default to improve security, addressing supply chain attack risks but sparking debate over compatibility and workflow changes.
Product
Socket now supports uv.lock files to ensure consistent, secure dependency resolution for Python projects and enhance supply chain security.
Research
Security News
Socket researchers have discovered multiple malicious npm packages targeting Solana private keys, abusing Gmail to exfiltrate the data and drain Solana wallets.