Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
A rich, fast, performant and easy to use application framework to build apps using Flask on top of it.
A rich, fast, performant and easy to use application framework to build apps using Flask on top of it.
Pyrin is an application framework built on top of Flask micro-framework to make life easier for developers who want to develop an enterprise application using Flask, without having to make their own core layer and getting better code design and structure that is more maintainable.
Pyrin could be used as the parent package of an application, so other application packages will use its functionality and features to maintain their goals without worrying about basic implementations. It is also possible for application packages to extend existing Pyrin packages.
Pyrin point of view is to build an application which is more decoupled, so making it possible to have customized implementations of different packages and also making it easier to write unit-test packages.
Another major fact of Pyrin is to avoid centralized locations for application features, so a team of multiple developers be able to work on the same repository without facing conflicts here and there. Also reducing the chances of annoying bugs due to forgetting to register something in somewhere.
Install using pip:
pip install pyrin
To be able to run tests:
pip install pyrin[tests]
python3 start_unit.py
to start all unit tests.A demo application developed using Pyrin framework is available at: Pyrin-Demo
We highly appreciate any kind of contributions to Pyrin development. Fork Pyrin and implement a new feature and make a pull request, we'll let you know when your work becomes a part of Pyrin. So, open the project in your IDE and create your pipenv environment. Then you could start developing Pyrin.
The sample code below, is just a rapid showcase on how to develop using Pyrin. for a real world application, it is best fit to use the concept of dependency injection and IoC which Pyrin is built upon.
To be able to create an application based on Pyrin, the only thing that is required to do
is to subclass from pyrin Application
class in your application package. this is
needed for Pyrin to be able to find out your application path for generating different
paths and also loading your application packages. there is no difference where to put
your subclassed Application
, in this example we put it inside the project's main
package, inside __init__.py
.
Sample Project Structure:
__init__.py
api.py
models.py
start.py
__init__.py:
from pyrin.application.base import Application
class DemoApplication(Application):
pass
models.py:
from pyrin.database.model.declarative import CoreEntity
from pyrin.database.orm.sql.schema.columns import GUIDPKColumn, StringColumn, SmallIntegerColumn
class GuestEntity(CoreEntity):
_table = 'guest'
id = GUIDPKColumn(name='id')
name = StringColumn(name='name', max_length=100, validated=True)
age = SmallIntegerColumn(name='age', min_value=1, validated=True)
api.py:
from pyrin.api.router.decorators import api
from pyrin.core.structs import DTO
from pyrin.database.services import get_current_store
from demo.models import GuestEntity
@api('/introduce/<name>', authenticated=False)
def introduce(name, **options):
"""
introduce yourself to us.
---
parameters:
- name: name
type: string
description: your name
responses:
200:
schema:
type: string
description: a welcome note
"""
store = get_current_store()
guest = GuestEntity(name=name)
store.add(guest)
return 'Hello dear {name}, you have been added into our database.'.format(name=name)
@api('/guests', authenticated=False)
def guests(**options):
"""
gets the list of all guests.
---
responses:
200:
schema:
type: array
items:
type: object
properties:
id:
type: string
format: uuid
description: id of guest
name:
type: string
description: name of guest
age:
type: integer
description: age of guest.
"""
store = get_current_store()
return store.query(GuestEntity).all()
@api('/', authenticated=False)
def hello(**options):
"""
shows the welcome message.
---
responses:
200:
schema:
properties:
message:
type: string
description: welcome message
current_guests:
type: integer
description: count of current guests
"""
store = get_current_store()
count = store.query(GuestEntity.id).count()
result = DTO(message='Welcome to our demo application, please introduce yourself.',
current_guests=count)
return result
start.py:
from demo import DemoApplication
if __name__ == '__main__':
app = DemoApplication()
app.run(use_reloader=False)
Now you could start application by executing this command in your terminal:
python3 start.py
Application will be available at 127.0.0.1:5000
by default.
Pyrin on default configurations, will use an in-memory sqlite
database.
Pyrin has a command line tool that can be used to create a new project. to use the command line interface of Pyrin, install Pyrin and then open a terminal and write:
pyrin project
after hitting enter, a couple of questions will be asked to create your project, answer questions accordingly, and your project will be created without a hassle.
After creating a new project using pyrin project
command, a cli.py
file will
be generated in the root of your new project directory. there are a couple of command
groups that can be used to perform different actions.
execute each command with --help
option to see all available commands of each group.
Builtin Commands:
python cli.py alembic
python cli.py babel
python cli.py template
python cli.py security
Integration Commands:
python cli.py celery
Pyrin has builtin integrations for different services. to use each one of integrations inside your application, you must install dependencies of that integration.
Celery:
pip install pyrin[celery]
To enable celery after installing its dependencies, open settings/packaging.ini
file
and remove pyrin.task_queues.celery
from the ignored_packages
list.
Sentry:
pip install pyrin[sentry]
To enable sentry after installing its dependencies, open settings/packaging.ini
file
and remove pyrin.logging.sentry
from the ignored_packages
list.
Redis:
pip install pyrin[redis]
To enable redis after installing its dependencies, open settings/packaging.ini
file
and remove pyrin.caching.remote.handlers.redis
from the ignored_modules
list.
Memcached:
pip install pyrin[memcached]
To enable memcached after installing its dependencies, open settings/packaging.ini
file
and remove pyrin.caching.remote.handlers.memcached
from the ignored_modules
list.
Pyrin has built-in support for Swagger UI thanks to
Flasgger.
all of your api services are available on swagger without anything needed to be done.
but you can enhance Swagger UI of your application by setting a good yaml
docstring for your api method views.
You can head over to 127.0.0.1:5000/swagger
to test the Swagger UI.
This project is inspired by the awesome Deltapy
framework by:
Unfortunately I couldn't find any links to it online.
Pyrin
is a greek word and means core.
FAQs
A rich, fast, performant and easy to use application framework to build apps using Flask on top of it.
We found that pyrin demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.