Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
.. image:: https://img.shields.io/pypi/v/praw.svg :alt: Latest PRAW Version :target: https://pypi.python.org/pypi/praw
.. image:: https://img.shields.io/pypi/pyversions/praw :alt: Supported Python Versions :target: https://pypi.python.org/pypi/praw
.. image:: https://img.shields.io/pypi/dm/praw :alt: PyPI - Downloads - Monthly :target: https://pypi.python.org/pypi/praw
.. image:: https://github.com/praw-dev/praw/actions/workflows/ci.yml/badge.svg?event=push :alt: GitHub Actions Status :target: https://github.com/praw-dev/praw/actions/workflows/ci.yml
.. image:: https://coveralls.io/repos/github/praw-dev/praw/badge.svg :alt: Coveralls Coverage :target: https://coveralls.io/github/praw-dev/praw?branch=master
.. image:: https://api.securityscorecards.dev/projects/github.com/praw-dev/praw/badge :alt: OpenSSF Scorecard :target: https://api.securityscorecards.dev/projects/github.com/praw-dev/praw
.. image:: https://img.shields.io/badge/Contributor%20Covenant-v2.0%20adopted-ff69b4.svg :alt: Contributor Covenant :target: https://github.com/praw-dev/.github/blob/main/CODE_OF_CONDUCT.md
.. image:: https://img.shields.io/badge/pre--commit-enabled-brightgreen?logo=pre-commit&logoColor=white :alt: pre-commit :target: https://github.com/pre-commit/pre-commit
.. image:: https://img.shields.io/badge/code%20style-black-000000.svg :alt: Black code style :target: https://github.com/psf/black
PRAW, an acronym for "Python Reddit API Wrapper", is a Python package that allows for
simple access to Reddit's API. PRAW aims to be easy to use and internally follows all of
Reddit's API rules <https://github.com/reddit/reddit/wiki/API>
_. With PRAW there's no
need to introduce sleep
calls in your code. Give your client an appropriate user
agent and you're set.
.. _installation:
PRAW is supported on Python 3.8+. The recommended way to install PRAW is via pip <https://pypi.python.org/pypi/pip>
_.
.. code-block:: bash
pip install praw
To install the latest development version of PRAW run the following instead:
.. code-block:: bash
pip install --upgrade https://github.com/praw-dev/praw/archive/master.zip
For instructions on installing Python and pip see "The Hitchhiker's Guide to Python"
Installation Guides <https://docs.python-guide.org/en/latest/starting/installation/>
_.
Assuming you already have a credentials for a script-type OAuth application you can instantiate an instance of PRAW like so:
.. code-block:: python
import praw
reddit = praw.Reddit(
client_id="CLIENT_ID",
client_secret="CLIENT_SECRET",
password="PASSWORD",
user_agent="USERAGENT",
username="USERNAME",
)
With the reddit
instance you can then interact with Reddit:
.. code-block:: python
# Create a submission to r/test
reddit.subreddit("test").submit("Test Submission", url="https://reddit.com")
# Comment on a known submission
submission = reddit.submission(url="https://www.reddit.com/comments/5e1az9")
submission.reply("Super rad!")
# Reply to the first comment of a weekly top thread of a moderated community
submission = next(reddit.subreddit("mod").top(time_filter="week"))
submission.comments[0].reply("An automated reply")
# Output score for the first 256 items on the frontpage
for submission in reddit.front.hot(limit=256):
print(submission.score)
# Obtain the moderator listing for r/test
for moderator in reddit.subreddit("test").moderator():
print(moderator)
Please see PRAW's documentation <https://praw.readthedocs.io/>
_ for more examples of
what you can do with PRAW.
If you plan on using PRAW in an asynchronous environment, (e.g., discord.py, asyncio) it
is strongly recommended to use Async PRAW <https://asyncpraw.readthedocs.io/>
_. It is
the official asynchronous version of PRAW and its usage is similar and has the same
features as PRAW.
For those new to Python, or would otherwise consider themselves a Python beginner,
please consider asking questions on the r/learnpython <https://www.reddit.com/r/learnpython>
_ subreddit. There are wonderful people there who
can help with general Python and simple PRAW related questions.
Otherwise, there are a few official places to ask questions about PRAW:
r/redditdev <https://www.reddit.com/r/redditdev>
_ is the best place on Reddit to ask
PRAW related questions. This subreddit is for all Reddit API related discussion so
please tag submissions with [PRAW]. Please perform a search on the subreddit first to
see if anyone has similar questions.
Real-time chat can be conducted via the PRAW Slack Organization <https://join.slack.com/t/praw/shared_invite/enQtOTUwMDcxOTQ0NzY5LWVkMGQ3ZDk5YmQ5MDEwYTZmMmJkMTJkNjBkNTY3OTU0Y2E2NGRlY2ZhZTAzMWZmMWRiMTMwYjdjODkxOGYyZjY>
_
(please create an issue if that invite link has expired).
Please do not directly message any of the contributors via Reddit, email, or Slack unless they have indicated otherwise. We strongly encourage everyone to help others with their questions.
Please file bugs and feature requests as issues on GitHub <https://github.com/praw-dev/praw/issues>
_ after first searching to ensure a similar
issue was not already filed. If such an issue already exists please give it a thumbs up
reaction. Comments to issues containing additional information are certainly welcome.
.. note::
This project is released with a `Contributor Code of Conduct
<https://github.com/praw-dev/.github/blob/main/CODE_OF_CONDUCT.md>`_. By
participating in this project you agree to abide by its terms.
PRAW's documentation is located at https://praw.readthedocs.io/.
August 2010 <https://github.com/praw-dev/praw/commit/efef08a4a713fcfd7dfddf992097cf89426586ae>
_:
Timothy Mellor created a github project called reddit_api
.
March 2011 <https://github.com/praw-dev/praw/commit/ebfc9caba5b58b9e68c77af9c8e53f5562a2ee64>
_:
The Python package reddit
was registered and uploaded to pypi.
December 2011 <https://github.com/praw-dev/praw/commit/74bb962b3eefe04ce6acad88e6f53f43d10c8803>
_:
Bryce Boe took over as maintainer of the reddit
package.
June 2012 <https://github.com/praw-dev/praw/commit/adaf89fe8631f41ab9913b379de104c9ef6a1e73>
_:
Bryce renamed the project PRAW
and the repository was relocated to the newly created
praw-dev organization on GitHub.
February 2016 <https://github.com/praw-dev/praw/commit/252083ef1dbfe6ea53c2dc99ac235b4ba330b658>
_:
Bryce began work on PRAW4, a complete rewrite of PRAW.
PRAW's source (v4.0.0+) is provided under the Simplified BSD License <https://github.com/praw-dev/praw/blob/0860c11a9309c80621c267af7caeb6a993933744/LICENSE.txt>
_.
Earlier versions of PRAW were released under GPLv3 <https://github.com/praw-dev/praw/blob/0c88697fdc26e75f87b68e2feb11e101e90ce215/COPYING>
_.
FAQs
Python Reddit API Wrapper.
We found that praw demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.