The security toolkit for the Python community

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for clavedeluna from gravatar.com clavedeluna Avatar for pixee from gravatar.com pixee

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT License Copyright (c) 2023 Dani Litovsky Alcala and others at Pixee Permission is hereby grant...
  • Author: Pixee
  • Tags security, appsec
  • Requires: Python >=3.8

Project description

security

Security toolkit for the Python community

This library includes a number of code security controls for various application security vulnerability categories. It can be used directly by programmers, but you may have been introduced to it by having it directly added to your code by automation.

Many of the APIs provided are meant to be drop-in replacements that either offer more secure defaults, harden against common attacks, or at least surface the security questions developers should answer when using risky APIs.

Installation

To install this package from PyPI, use the following command:

pip install security

Running tests

DO NOT RUN TESTS LOCALLY WITHOUT A VM/CONTAINER.

Tests will try to run "dangerous" commands (i.e. curl, netcat, etc.) and try to access sensitive files (i.e. sudoers, passwd, etc.). We do so to test the our abilities to detect and filter these types of attacks.

While all these commands are devised as innocuous, it is still not a good idea to risk exposure. They also require a specific environment to pass. We recommend using something like act to run the github workflow locally within a container for local development.

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for clavedeluna from gravatar.com clavedeluna Avatar for pixee from gravatar.com pixee

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT License Copyright (c) 2023 Dani Litovsky Alcala and others at Pixee Permission is hereby grant...
  • Author: Pixee
  • Tags security, appsec
  • Requires: Python >=3.8

Release history Release notifications | RSS feed

This version

1.3.1

1.3.0

1.2.1

1.2.0

1.0.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

security-1.3.1.tar.gz (27.9 kB view details)

Uploaded Source

Built Distribution

security-1.3.1-py3-none-any.whl (13.4 kB view details)

Uploaded Python 3

File details

Details for the file security-1.3.1.tar.gz.

File metadata

  • Download URL: security-1.3.1.tar.gz
  • Upload date:
  • Size: 27.9 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/5.1.1 CPython/3.12.4

File hashes

Hashes for security-1.3.1.tar.gz
Algorithm Hash digest
SHA256 7ec0853c74c7dd22a9967bda087db5d4a7df58253574e60ec475c660f839da6d
MD5 7edb638705e8b3975f86c48e5a2d1a8a
BLAKE2b-256 faac5ee0cd528ee9e5f166b44bc98a3c219fb93418ed48a88eb36a868c596239

See more details on using hashes here.

File details

Details for the file security-1.3.1-py3-none-any.whl.

File metadata

  • Download URL: security-1.3.1-py3-none-any.whl
  • Upload date:
  • Size: 13.4 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/5.1.1 CPython/3.12.4

File hashes

Hashes for security-1.3.1-py3-none-any.whl
Algorithm Hash digest
SHA256 9df6e75393f494ca3fd06dac3ed02f3c4fed60842b13fd00757b026cedff426b
MD5 5bf0d94b086b58e9f360d53b19c4b2ae
BLAKE2b-256 d721b65c9f876fce298d6bd5411f1cde7fc889ea90d7bb7d9eaa1fcbb0920b18

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page