Research
2025 Report: Destructive Malware in Open Source Packages
Destructive malware is rising across open source registries, using delays and kill switches to wipe code, break builds, and disrupt CI/CD.
By Kush Pandya - Dec 24, 2025
pact-python
Artifacts are distributable versions of a package. It typically includes the source code and metadata
Advanced tools
- Version
- 1.2.11
- Maintainers
- 2
Pact Python
Fast, easy and reliable testing for your APIs and microservices.
| Package |
|
| CI/CD |
|
| Meta |
|
| Community |
|
Pact is the de-facto API contract testing tool. Replace expensive and brittle end-to-end integration tests with fast, reliable and easy to debug unit tests.
Why use Pact? Contract testing with Pact lets you:
Watch our series on the problems with end-to-end integrated tests, and how contract testing can help. |
Documentation
This readme provides a high-level overview of the Pact Python library. For detailed documentation, please refer to the full Pact Python documentation. For a more general overview of Pact and the rest of the ecosystem, please refer to the Pact documentation.
Documentation for the API is generated from the docstrings in the code which you can view at pact-foundation.github.io/pact-python/pact.
Need Help
- Join our community slack workspace.
- Stack Overflow is a great place to ask questions.
- Say 👋 on Twitter: @pact_up
- Join a discussion 💬 on GitHub Discussions
- Raise an issue on GitHub
Installation
The latest version of Pact Python can be installed from PyPi:
pip install pact-python
# 🚀 now write some tests!
Requirements
Pact Python tries to support all versions of Python that are still supported by the Python Software Foundation. Older version of Python may work, but are not officially supported.
In order to support the broadest range of use cases, Pact Python tries to impose the least restrictions on the versions of libraries that it uses.
Telemetry
In order to get better statistics as to who is using Pact, we collect some anonymous telemetry. The only things we record are your type of OS, and the version information for the package. No personally identifiable information is sent as part of this request. You can disable telemetry by setting the environment variable PACT_DO_NOT_TRACK=1:
Contributing
We welcome contributions to the Pact Python library in many forms. There are many ways to help, from writing code, to providing new examples, to writing documentation, to testing the library and providing feedback. For more information, see the contributing guide.
Keywords
FAQs
Tool for creating and verifying consumer-driven contracts using the Pact framework.
We found that pact-python demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Engineering with AI Podcast: The Promise of AI-First Development
Socket CTO Ahmad Nassri shares practical AI coding techniques, tools, and team workflows, plus what still feels noisy and why shipping remains human-led.
By Sarah Gooding - Dec 24, 2025
Research
/Security News
Spearphishing Campaign Abuses npm Registry to Target U.S. and Allied Manufacturing and Healthcare Organizations
A five-month operation turned 27 npm packages into durable hosting for browser-run lures that mimic document-sharing portals and Microsoft sign-in, targeting 25 organizations across manufacturing, industrial automation, plastics, and healthcare for credential theft.
By Nicholas Anderson, Kirill Boychenko - Dec 23, 2025