
Research
PyPI Package Disguised as Instagram Growth Tool Harvests User Credentials
A deceptive PyPI package posing as an Instagram growth tool collects user credentials and sends them to third-party bot services.
Create C call graphs from multiple source files using Cflow, producing linked PDF.
Draw call graphs for C source code using dot
and cflow
.
Typeset PDF with a page per source file and clickable cross-file
function references.
cflow2dot -i hello_simple.c -f png
produces:
from hello_simple.c
.
Draw the call graph of C source code using cflow and dot. Output to LaTeX, dot, PDF, SVG, PNG, and from dot to all formats supported from it. The LaTeX output is obtained by including the SVG via Inkscape's LaTeX export functionality.
Multi-file sources are converted to multiple SVG files, one for each source. These contain links using the LaTeX package hyperref, so that after compilation one can click on the name of a function call and be taken to its definition, even if that definition is in another page of the PDF, because the function is defined in another source file than the one corresponding to the current PDF page.
Note that if a file containing the definition is missing, then the hyperref link
is omitted, so that no dead links result after compiling with LaTeX.
This might be the case of for example the file with the definitions is
available, but is not passed to pycflow2dot
, e.g., for the purpose of focusing
on a subset of the sources.
For now the LaTeX result has to be manually compiled, though this extra step will be automated in the future. Multi-SVG export will still be available, so that the results can be included in a larger document, e.g., a report.
pycflow2dot
is a Python port of the Perl script cflow2dot
.
From the Python Package Index (PyPI) using the
package installer pip
:
pip install pycflow2dot
You also need to install the following non-Python dependencies:
apt install cflow
on Debian GNU/Linuxport install cflow
with MacPortsdot
:
apt install graphviz
port install graphviz
Optionally, cpp
too.
pycflow2dot
is licensed under the GNU GPL v3.
FAQs
Create C call graphs from multiple source files using Cflow, producing linked PDF.
We found that pycflow2dot demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
A deceptive PyPI package posing as an Instagram growth tool collects user credentials and sends them to third-party bot services.
Product
Socket now supports pylock.toml, enabling secure, reproducible Python builds with advanced scanning and full alignment with PEP 751's new standard.
Security News
Research
Socket uncovered two npm packages that register hidden HTTP endpoints to delete all files on command.