Skip to main content

Savex is a Python library crafted to bolster the security of file uploads within web applications. With an emphasis on mitigating prevalent vulnerabilities associated with file handling, Savex furnishes sturdy sanitization and validation capabilities to ensure that uploaded files are safe for utilization within your application.

Project description

SAVEX

Overview

SaveX is a Python library crafted to bolster the security of file uploads within web applications. With an emphasis on mitigating prevalent vulnerabilities associated with file handling, SaveX furnishes sturdy sanitization and validation capabilities to ensure that uploaded files are safe for utilization within your application.

:star: If you find savex useful, please consider giving us a star on GitHub! Your support helps us continue to innovate and deliver exciting features.

GitHub contributors GitHub Repo stars GitHub commit activity (branch) GitHub Release Date - Published_At GitHub release (with filter) GitHub License

Key Features

  1. File Name Sanitization: Savex provides functions to sanitize file names by eliminating disallowed characters, consecutive dots or spaces, and thwarting path traversal attempts. This thwarts malicious users from exploiting file upload functionalities to compromise the server.

  2. Content Validation: The library encompasses mechanisms to execute basic content checks on uploaded files. It scrutinizes file contents for suspicious patterns, such as PHP or JavaScript code injections, and identifies potential backdoor attempts within image files.

  3. File Type Verification: Savex validates the file types of uploads to ensure compliance with allowed formats. By scrutinizing file extensions and content headers, it prevents the execution of arbitrary code masquerading as benign file uploads.

  4. Customizable Security Policies: Developers can tailor security policies to suit their application's requirements. SaveX facilitates fine-tuning of permitted file extensions, content patterns, and backdoor detection mechanisms, offering flexibility while upholding security.

Benefits

  • Enhanced Security: By integrating SaveX into your file upload workflow, you can significantly diminish the risk of security breaches and safeguard your application from malevolent file uploads.

  • Ease of Integration: With its intuitive API and straightforward usage, SaveX seamlessly integrates into existing Python-based web applications, necessitating minimal setup and configuration.

  • Comprehensive Protection: SaveX addresses diverse security concerns related to file uploads, furnishing a comprehensive solution for fortifying your application's file handling functionalities.

Target Audiences

Savex caters to developers and organizations constructing web applications that involve user-generated content and file uploads. It serves individuals and teams striving to fortify their application's defenses against common security threats linked with file handling vulnerabilities.

Future Development

In forthcoming iterations, Savex aims to integrate advanced security features, including real-time threat detection, enhanced file analysis techniques, and amalgamation with security frameworks for comprehensive protection against evolving cyber threats. Furthermore, the project will concentrate on augmenting usability and performance to deliver an even more robust and user-friendly solution.

Instalation

pip install savex

Quick Start

def main():
    # Create a mock file object
    class MockFile:
        def __init__(self, name):
            self.name = name

    # Test valid file name
    valid_file = MockFile("foto.jpg.php")
    print(file_filter(valid_file))


if __name__ == "__main__":
    main()

Contributing

Kindly read our Contributing Guide to familiarize yourself with ToolJet's development process, how to suggest bug fixes and improvements, and the steps for building and testing your changes.

Contributors

License

Savex © 2024, Released under the MIT License.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distributions

No source distribution files available for this release.See tutorial on generating distribution archives.

Built Distribution

savex-0.1.0-py3-none-any.whl (5.5 kB view details)

Uploaded Python 3

File details

Details for the file savex-0.1.0-py3-none-any.whl.

File metadata

  • Download URL: savex-0.1.0-py3-none-any.whl
  • Upload date:
  • Size: 5.5 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/5.1.0 CPython/3.10.4

File hashes

Hashes for savex-0.1.0-py3-none-any.whl
Algorithm Hash digest
SHA256 a49c2c3d392a3c9c7b9ffae94d38f3defaca22503bfb4728b87a1ce22365a96a
MD5 bba47127c68a9b231295a5e52721b28c
BLAKE2b-256 2972d6c129393e96f85d87d4e0114395431fcb9afe1f60d9d1f39ca862913ecc

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page