Research
Malicious fezbox npm Package Steals Browser Passwords from Cookies via Innovative QR Code Steganographic Technique
A malicious package uses a QR code as steganography in an innovative technique.
By Olivia Brown - Sep 22, 2025
- Version
- 1.0.4
- Maintainers
- 1
valorant.py
valorant.py is an unofficial API wrapper for Riot Games' Valorant API endpoints. It's modern, easy to use, feature-rich, and intuitive!
Features
-
Simple: High-level abstraction of API interactions; easy to use and easy to customize.
-
Lightweight: Doesn't rely on any external dependencies, minimal package size.
-
Extensive: Covers all Valorant related endpoints from the Riot Games API. Also includes Account coverage.
-
Fast: HTTP requests and object instancing optimized to use minimal resources and complete tasks quickly!
-
Intuitive: Complete auto-completion, docstrings, and type-hinting for all library objects and variables.
Installation
valorant.py requires Python 3.8 or higher.
| Manager | Command |
|---|---|
| PIP | pip install valorant |
| Poetry | poetry add valorant |
Usage
Take a look at the examples/ folder for more usage snippets!
Quickstart:
import valorant
KEY = "RGAPI-Key-Here"
client = valorant.Client(KEY)
agents = client.get_characters()
print(agents.get("Viper"))
Local Client:
import valorant
client = valorant.LocalClient()
print(client.get_session())
NOTE: The Local Client interacts with the Client API that Valorant uses while the game is running on your system. This means access to current player, friend requests, shop, etc. The Local Client is currently unstable. valorant.py is not liable for any punishment you may recieve should you use its tools to break Valorant ToS. (i.e Auto-Agent Selection)
Documentation
The public API documentation for valorant.py is hosted on ReadTheDocs.io.
Use bash bin/docs to start the documentation server locally. This uses Ruby's WEBrick gem.
Help and Questions
Have a bug or issue? Need help with the API? Open an issue or hop in the #valorant-py channel of the Frisscraft Community Discord Server.
Contributing
Head over to the Contributing Guide page.
FAQs
Complete Python interface for the Valorant API. Works right out of the box!
We found that valorant demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Research
/Security News
Identifying and Preventing Fraudulent Engineering Candidates: An Investigation into 80 Confirmed Cases
Socket identified 80 fake candidates targeting engineering roles, including suspected North Korean operators, exposing the new reality of hiring as a security function.
By Lauren Valencia, Kirill Boychenko - Sep 17, 2025
Application Security
/Research
/Security News
Updated and Ongoing Supply Chain Attack Targets CrowdStrike npm Packages
Socket detected multiple compromised CrowdStrike npm packages, continuing the "Shai-Hulud" supply chain attack that has now impacted nearly 500 packages.
By Kush Pandya, Peter van der Zee, Olivia Brown, Socket Research Team - Sep 16, 2025