DependencyConfusion

Description

This package implements a test for Dependency Confusion using pip.

The version 0.0.2 is available on test.pypi.org.
The version 0.0.2 and 666 are available on pypi.org.
In the scenario you want to install version 0.0.2 available on test.pypi.org and you use the pip --extra-index-url option to install it.
During installation, a window will open to tell you which version is being installed... theoretically version 666 available on pypi.org will be installed if your pip version is vulnerable to dependency confusion.

Requirements

This package require:

python3
python3 Standard Library

Installation

pip install --extra-index-url https://test.pypi.org/simple/ DependencyConfusion

Links

Licence

Licensed under the GPL, version 3.

Name		Name	Last commit message	Last commit date
Latest commit History 6 Commits
DependencyConfusion.egg-info		DependencyConfusion.egg-info
DependencyConfusion.py		DependencyConfusion.py
LICENSE.txt		LICENSE.txt
PKG-INFO		PKG-INFO
README.md		README.md
setup.cfg		setup.cfg
setup.py		setup.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

DependencyConfusion

Description

Requirements

Installation

Links

Licence

About

Uh oh!

Releases

Packages

Uh oh!

Languages

License

mauricelambert/DependencyConfusion

Folders and files

Latest commit

History

Repository files navigation

DependencyConfusion

Description

Requirements

Installation

Links

Licence

About

Topics

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Languages

Packages