Research
PyPI Package Disguised as Instagram Growth Tool Harvests User Credentials
A deceptive PyPI package posing as an Instagram growth tool collects user credentials and sends them to third-party bot services.
By Kush Pandya - Jun 06, 2025
🚀 Big News: Socket Acquires Coana to Bring Reachability Analysis to Every Appsec Team.Learn more →
- Maintainers
- 1
Rulebook
Third-party rules for JVM and Python lint tools, meant to be used in conjunction with official ones. Most of the rules are opinionated personal code styles. However, some already exists in other linters, providing the same experience across multiple languages.
| Language | Linter | Variants |
|---|---|---|
| Kotlin | Ktlint | Ktlint Style |
| Java | Checkstyle | Sun Style or Google Java Style |
| Groovy | CodeNarc | Groovy Style |
| Python | Pylint | Pylint Style or Google Python Style |
Download
Maven
repositories {
mavenCentral()
}
dependencies {
ktlint "com.hanggrian.rulebook:rulebook-ktlint:$version"
checkstyle "com.hanggrian.rulebook:rulebook-checkstyle:$version"
codenarc "com.hanggrian.rulebook:rulebook-codenarc:$version"
}
PyPI
pip install pylint regex rulebook-pylint
Usage
Ktlint
- Apply Ktlint Integration to Gradle project.
- Using configuration
ktlint, add this project as dependency.
configurations {
ktlint
}
dependencies {
ktlint "com.hanggrian.rulebook:rulebook-ktlint:$libraryVersion"
}
// the rest of ktlint tasks' configuration
Checkstyle
- Apply Checkstyle Gradle Plugin.
- Using configuration
checkstyle, add this project as dependency. - Point to local config file or put in
/config/checkstyle/codenarc.xml.
plugins {
checkstyle
}
checkstyle {
toolVersion "$checkstyleVersion"
configFile "path/to/rulebook_checkstyle.xml"
}
dependencies {
checkstyle "com.hanggrian.rulebook:rulebook-checkstyle:$libraryVersion"
}
CodeNarc
- Apply CodeNarc Gradle Plugin.
- Using configuration
codenarc, add this project as dependency. - Point to local config file or put in
/config/codenarc/codenarc.xml.
plugins {
codenarc
}
codenarc {
toolVersion "$codenarcVersion"
configFile "path/to/rulebook_codenarc.xml"
}
dependencies {
codenarc "com.hanggrian.rulebook:rulebook-codenarc:$libraryVersion"
}
Pylint
- Point config file to local
pylintrc.
First time installation
Presuming the IDE is IntelliJ IDEA or PyCharm, consider applying the linter style to it.
Ktlint
Explained in Ktlint IntelliJ IDEA Configuration, using standard Kotlin coding conventions is enough:
- In File > Settings > Editor > Code Style > Kotlin, set from Kotlin style guide.
- Append
kotlin.code.style=officialto rootgradle.properties.
Checkstyle
Explained in Google Java Format:
- In File > Settings > Editor > Code Style > Java, import IntelliJ Java Google Style file.
Pylint
Apply few changes in settings:
- In File > Settings > Editor > Code Style > Python > Blank Lines:
- Set After local imports and Before the first method to 0.
- Set the rest to 1.
Keywords
FAQs
Extended lint rules for JVM and Python
We found that rulebook-pylint demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Product
Socket Now Supports pylock.toml Files
Socket now supports pylock.toml, enabling secure, reproducible Python builds with advanced scanning and full alignment with PEP 751's new standard.
By Trevor Norris - Jun 05, 2025
Security News
Research
Destructive npm Packages Disguised as Utilities Enable Remote System Wipe
Socket uncovered two npm packages that register hidden HTTP endpoints to delete all files on command.
By Kush Pandya - Jun 05, 2025