Our great sponsors
-
Hey I wrote something about that some time ago. Please give me some feedback, if possible :)
-
The github repo still has the correct code.
-
Mergify
Tired of breaking your main and manually rebasing outdated pull requests?. Managing outdated pull requests is time-consuming. Mergify's Merge Queue automates your pull request management & merging. It's fully integrated to GitHub & coordinated with any CI. Start focusing on code. Try Mergify for free.
-
dangerzone
Take potentially dangerous PDFs, office documents, or images and convert them to safe PDFs
Isolating … like setting up a VM without net access or shared folders and then use e.g. dangerzone?
-
safety
Safety checks Python dependencies for known security vulnerabilities and suggests the proper remediations for vulnerabilities detected.
Checking could be done if something like this eventually shows up in safety or pip-audit.
-
Checking could be done if something like this eventually shows up in safety or pip-audit.
-
If the risk is higher than normal, they could run a static code analysis tool like bandit, that includes checks for bad practices. While I think you should be able to code whatever/however you want to, it could lower your score if you looped through all env-variables. Maybe. Then display that indicator on pypi.
-
You are most welcome! In fact I had my issues with this too and can relate. Btw., I am sure Python would benefit from issues that mention concrete shortcomings, that is, if you are up to another good deed.
-
Sonar
Write Clean Python Code. Always.. Sonar helps you commit clean code every time. With over 225 unique rules to find Python bugs, code smells & vulnerabilities, Sonar finds the issues while you focus on the work.
-
kad
A simple Python package converting dictionary keys to attributes of a class. (by morrigan-plus-plus)
-
The loss of pip search was a sad event. I discovered many, small, well written packages with it. Not enough people get involved and I can tell you why: It's difficult to 'get in'. If you click the small "contribute" link at the bottom of the pypi site you end up here. Not exactly a welcoming mat ! The python.org get involved page is a bit better, but right behind each of the links you get right into the action a bit too fast. As a retired CS guy I'd love to get involved and give some time, but I would need some handholding ( or more information) before I feel comfortable doing so.
Related posts
- Bundling binary tools in Python wheels
- Modern Python setup for quality development
- How can a small open-source project be improved?
- Ruff format, new tool to format python files that is 30-120x faster than other tools(e.g black or yapf) - benchmark
- [Tool Anouncement] github-distributed-owners - A tool for managing GitHub CODEOWNERS using OWNERS files distributed throughout your code base. Especially helpful for monorepos / multi-team repos