This package implements a test for Dependency Confusion using pip.
Project description
DependencyConfusion
Description
This package implements a test for Dependency Confusion using pip.
- The version
0.0.2is available on test.pypi.org. - The version
0.0.2and666are available on pypi.org. - In the scenario you want to install version
0.0.2available on test.pypi.org and you use the pip--extra-index-urloption to install it. - During installation, a window will open to tell you which version is being installed... theoretically version
666available on pypi.org will be installed if your pip version is vulnerable to dependency confusion.
Requirements
This package require:
- python3
- python3 Standard Library
Installation
pip install --extra-index-url https://test.pypi.org/simple/ DependencyConfusion
Links
Licence
Licensed under the GPL, version 3.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
File details
Details for the file DependencyConfusion-666.tar.gz.
File metadata
- Download URL: DependencyConfusion-666.tar.gz
- Upload date:
- Size: 3.5 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/3.2.0 pkginfo/1.6.1 requests/2.25.0 setuptools/59.6.0 requests-toolbelt/0.9.1 tqdm/4.54.1 CPython/3.9.11
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 037589b90c04e5e7d6c569cafced297ee93d5ec4de97596b8df2862ce50e69d9 |
|
| MD5 | 03f3fe2ab78bbc5aa8d6e43334500e25 |
|
| BLAKE2b-256 | 00d908c6d91608ed3614bfc927b47593919ceb4962b0fa92f98cfdcd4b9c4e78 |
