Security News
Research
Data Theft Repackaged: A Case Study in Malicious Wrapper Packages on npm
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
research-data-services-common
Advanced tools
This package make the most common modules in Sciebo RDS available in one place, so we do not have to maintain them in several places. In the RDS project, we use OAuth2 for authentication between numerious services, so we need a datastructure with methods, which supports this.
So this package implement 3 basic classes (User, Service, Token), which handles standard user-password authentication. If you need this classes with oauth2-support, you have to use the corresponding version (e.g. Service => Oauth2Service). (Notice: User does not have an oauth2-version, because token takes care of password or token and service takes care of everything else for oauth2.)
You can find some examples to use this package below. If you need more, please take a look into the tests or sciebo RDS (e.g. Token Storage).
from RDS import User
user1 = User("Max Mustermann")
pip install research-data-services-common
If you want to work with flask, you can use some additional features, when it is installed.
pip install "research-data-services-common[flask]"
With flask installed, you can use the JSONEncoder for flask.
from flask import Flask, jsonify
from RDS import Util
app = Flask(__name__)
app.json_encoder = Util.get_encoder(func_name="to_dict")
class Storage():
def to_dict(self):
return {"foo": "bar"}
@app.route("/")
def hello():
return jsonify(Storage())
If you want to use builtin json, you do not need flask. Then you can use monkeypatch-method.
from RDS import Util
import json
class Storage():
def to_dict(self):
return {"foo": "bar"}
Util.monkeypatch(func_name="to_dict")
print(json.dumps(Storage())) # expects: '{"foo":"bar"}'
Notice: func_name defaults to to_json.
If you want to monkeypatch json and flask, you can use the helper function monkeypatch from RDS.
from RDS import Util
Util.monkeypatch()
If it runs in a flask app context, it patches the app by itself. Otherwise you have to set the app-argument.
from flask import Flask
app = Flask(__name__)
@app.route('/')
def hello_world():
return 'Hello, World!'
from RDS import Util
Util.monkeypatch("getDict", app=app)
The first argument in the previous example, you can see how to set the method, which should be used for json encoding from your object. The monkeypatch-method patches JSONEncoder in your python installation and your app flask.
This helps you to work with ro-crate-metadata files. Take a look in the tests to see, how this can be used.
FAQs
The token and service implementation of sciebo RDS
We found that research-data-services-common demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
The Socket Research Team breaks down a malicious wrapper package that uses obfuscation to harvest credentials and exfiltrate sensitive data.
Research
Security News
Attackers used a malicious npm package typosquatting a popular ESLint plugin to steal sensitive data, execute commands, and exploit developer systems.
Security News
The Ultralytics' PyPI Package was compromised four times in one weekend through GitHub Actions cache poisoning and failure to rotate previously compromised API tokens.