20.09.2025 00:45
leanpub (@leanpub@mastodon.social)

New 📚 Release! Practical Pydantic: The Missing Guide to Data Validation in Python by Nuno Bispo

Link: https://leanpub.com/practical-pydantic

#books #ebooks #python #datascience #programming #coding

Show Original Post

copy and reply to the post

19.09.2025 23:32
laravista (@laravista@mastodon.uno)

🔍 / #software / #automation / #BPMN / #python

#SpiffWorkflow Business Process Automation with BPMN and Python. Connect people and software together in a way that makes sense to everyone.

🐱🔗 https://laravista.altervista.org/CatLink/links/356

#catlink #softwareautomation #softwareautomationBPMN #softwareautomationBPMNpython

Show Original Post

copy and reply to the post

19.09.2025 23:21
diazona (@diazona@techhub.social)

@canterberry A fun project for sure 👍 but also there are plenty of robust third-party HTTP and networking libraries. I sometimes wonder about whether it'd make sense for one of them to be in the standard library. No doubt it'd be useful, but they tend to be quite complex.... 🤷

#Python

Show Original Post

copy and reply to the post

19.09.2025 23:16
canterberry (@canterberry@defcon.social)

I've spent the past couple of days refreshing my #Python. Happy to say, it's like riding a bike!

It's bothered me that, despite its prevalence in web-facing software, Python's standard library HTTP implementation is shoddy and half-baked.

Don't just take my word for it. The official docs openly admit to being unsuitable for production.

So I figured it might be a fun project to rewrite it. Thus, HT2P is born.

https://codeberg.org/canterberry/ht2p

It should go without saying, but please don't use this in a high-stakes scenario, yet. I only just started on it yesterday.

Show Original Post

copy and reply to the post

19.09.2025 22:14
elebertus (@elebertus@mastodon.social)

I really don’t see the value in swapping from the venv/pip modules in favor of any of the other tools that have popped up in recent years.

Make a virtual environment, use it, install packages optionally from a manifest. Any orchestration around this is done with a #makefile and module metadata is handled by distutils setup.py

My mindset in general is to use or try whatever tools are builtin (to anything) before going to external tools.

#python

Show Original Post

copy and reply to the post

19.09.2025 21:45
leanpub (@leanpub@mastodon.social)

Practical Pydantic: The Missing Guide to Data Validation in Python https://leanpub.com/practical-pydantic by Nuno Bispo is the featured book on the Leanpub homepage! https://leanpub.com #Fastapi #Python #Apis #ComputerProgramming #books #ebooks

Find it on Leanpub!

Show Original Post

copy and reply to the post

19.09.2025 21:34
r (@r@fed.brid.gy)

Released version 0.22.0 of #Lisien, formerly #LiSE, the state container and rules engine for systemically complex simulations like those by Maxis or Paradox. Put your game's state in Lisien, and forget that save files ever existed. clayote.itch.io/lisien/devlo... #gameDev #lifeSim #python

v0.22.0 new export format, det...

Show Original Post

copy and reply to the post

19.09.2025 20:48
treyhunner (@treyhunner@mastodon.social)

Most importantly, remember to pay attention to the nouns when trying to decipher help output.

Read more 👉 https://trey.io/vrp702

#Python

Show Original Post

copy and reply to the post

19.09.2025 20:33
techbot (@techbot@social.raytec.co)

Malicious PyPI Packages Deliver SilentSync RAT

Two malicious Python packages, sisaws and secmeasure, were discovered in the Python Package Index (PyPI) repository. These packages, created by the same author, deliver a Remote Access Trojan (RAT) called SilentSync. The RAT is capable of remote command execution, file exfiltration, screen capturing, and web browser data theft. It specifically targets Windows systems and communicates with a command-and-control server using HTTP. The packages use typosquatting and mimic legitimate packages to deceive users. SilentSync achieves persistence through platform-specific techniques and can harvest browser data, execute shell commands, capture screenshots, and steal files. This discovery highlights the growing risk of supply chain attacks within public software repositories.

Pulse ID: 68cd7f4ac828ce64182a78ea
Pulse Link: https://otx.alienvault.com/pulse/68cd7f4ac828ce64182a78ea
Pulse Author: AlienVault
Created: 2025-09-19 16:05:30

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#AWS #Browser #CyberSecurity #DataTheft #HTTP #InfoSec #Mimic #OTX #OpenThreatExchange #PyPI #Python #RAT #RemoteAccessTrojan #RemoteCommandExecution #SupplyChain #Trojan #TypoSquatting #Windows #bot #AlienVault

Show Original Post

copy and reply to the post

19.09.2025 20:07
GandalfDG (@GandalfDG@indieweb.social)

I've gotta say, I really love #Python. It's a joy to write, and it works for so many purposes. I'm starting to run up against some performance issues, but having worked on this project for nearly a year now it feels like a really solid base for pulling out some performance-critical stuff to another language.

I especially enjoy generators and generator expressions.

#Python3 #Programming #softwaredevelopment

Show Original Post

copy and reply to the post

19.09.2025 19:58
techbot (@techbot@social.raytec.co)

Malicious PyPI Packages Deliver SilentSync RAT

Security researcher ThreatLabz uncovered two malicious Python packages that deliver a Remote Access Trojan (RAT) that is capable of remote command execution, according to a report published in the journal Security Research.

Pulse ID: 68cd4cc4c780536955d40952
Pulse Link: https://otx.alienvault.com/pulse/68cd4cc4c780536955d40952
Pulse Author: CyberHunter_NL
Created: 2025-09-19 12:29:56

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CyberSecurity #InfoSec #OTX #OpenThreatExchange #PyPI #Python #RAT #RemoteAccessTrojan #RemoteCommandExecution #ThreatLabz #Trojan #bot #CyberHunter_NL

Show Original Post

copy and reply to the post

19.09.2025 19:49
techbot (@techbot@social.raytec.co)

Malicious PyPI Packages Deliver SilentSync RAT

Two malicious Python packages, sisaws and secmeasure, were discovered in the Python Package Index (PyPI) repository. These packages, created by the same author, deliver a Remote Access Trojan (RAT) called SilentSync. The RAT is capable of remote command execution, file exfiltration, screen capturing, and web browser data theft. It targets Windows systems and communicates with a command-and-control server using HTTP. The packages employ typosquatting and imitate legitimate modules to deceive users. SilentSync achieves persistence through platform-specific techniques and supports various commands for data exfiltration and system control. This discovery highlights the growing risk of supply chain attacks within public software repositories.

Pulse ID: 68cb5d39e48a846da4c8aec9
Pulse Link: https://otx.alienvault.com/pulse/68cb5d39e48a846da4c8aec9
Pulse Author: AlienVault
Created: 2025-09-18 01:15:37

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#AWS #Browser #CyberSecurity #DataTheft #HTTP #InfoSec #OTX #OpenThreatExchange #PyPI #Python #RAT #RemoteAccessTrojan #RemoteCommandExecution #SupplyChain #Trojan #TypoSquatting #Windows #bot #AlienVault

Show Original Post

copy and reply to the post