
Research
SANDWORM_MODE: Shai-Hulud-Style npm Worm Hijacks CI Workflows and Poisons AI Toolchains
An emerging npm supply chain attack that infects repos, steals CI secrets, and targets developer AI toolchains for further compromise.
petrus
Advanced tools
Create/autocomplete/format a python project and upload it to PyPI.
To install petrus, you can use pip. Open your terminal and run:
.. code-block:: bash
pip install petrus
The petrus package provides the functions main and run. main provides the CLI. To familiarize us with petrus it may be a good starting point to use the help option of main:
.. code-block:: bash
# bash
python3 -m petrus -h
or
.. code-block:: python
# python
import petrus
petrus.main(["-h"])
The arguments of main can also be used analogously on the function run (except for the flags -h and -V).
.. code-block:: python
# The following lines are all identical:
petrus.main(["--author", "John Doe", "path/to/project"])
petrus.main(["--author=John Doe", "path/to/project"])
petrus.main(["--author", "John Doe", "--", "path/to/project"])
petrus.run("path/to/project", author="John Doe")
petrus.run(author="John Doe", path="path/to/project")
petrus.run("path/to/project", author="John Doe", email=None)
If an option is not used (i.e. given the value None) it defaults to the value provided in the default table in the included file config.toml (if existent).
.. code-block:: toml
[default]
author = "Johannes"
description = ""
email = "johannes-programming@mailfence.com"
github = "johannes-programming"
requires_python = "{preset} \\| {current}"
v = "bump(2, 1)"
year = "{current}"
[general]
root = ""
If that fails the arguments default to the empty string. The empty string itself usually results in skipping whatever steps required the information.
The general.root setting allows to change directory even before path is applied.
It is recommended to create a config.toml file inside the petrus package before usage.
This project is licensed under the MIT License.
Download <https://pypi.org/project/petrus/#files>_Index <https://pypi.org/project/petrus>_Source <https://github.com/johannes-programming/petrus>_Website <http://www.petrus.johannes-programming.online>_Johannes <http://www.johannes-programming.online>_johannes-programming@mailfence.com <mailto:johannes-programming@mailfence.com>_Thank you for using petrus!
FAQs
This project creates/autocompletes/formats a python project and upload it to PyPI.
We found that petrus demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Research
An emerging npm supply chain attack that infects repos, steals CI secrets, and targets developer AI toolchains for further compromise.

Company News
Socket is proud to join the OpenJS Foundation as a Silver Member, deepening our commitment to the long-term health and security of the JavaScript ecosystem.

Security News
npm now links to Socket's security analysis on every package page. Here's what you'll find when you click through.