Otu ndị nyocha sitere na Mahadum Turku (Finland) bipụtara nsonaazụ nyocha nke ngwugwu na ebe nchekwa PyPI maka iji ihe arụrụ arụ nwere ike ịkpata adịghị ike. N'oge nyocha nke ngwugwu 197 puku, 749 puku nsogbu nchekwa nwere ike mata. 46% nke ngwugwu nwere opekata mpe otu nsogbu dị otú ahụ. Otu n'ime nsogbu ndị a na-ahụkarị bụ adịghị ike metụtara njikwa ewepu yana iji njirimara na-enye ohere ngbanwe koodu.
N'ime 749 puku nsogbu chọpụtara, 442 puku (41%) ka a kpọrọ dị ka obere, 227 puku (30%) dị ka agafeghị oke nsogbu na 80 puku (11%) dị ize ndụ. Ụfọdụ ngwugwu dị iche na igwe mmadụ ma nwee ọtụtụ puku nsogbu: dịka ọmụmaatụ, ngwugwu PyGGI chọpụtara nsogbu 2589, nke metụtara iji ihe arụ ọrụ "agbalị-except-pass", na ngwugwu appengine-sdk chọtara nsogbu 2356. Ọnụ ọgụgụ dị ukwuu nke nsogbu dịkwa na ngwugwu genie.libs.ops, pbcore na genie.libs.parser.
Ekwesiri ighota na enwetara nsonaazụ ya dabere na nyocha static na-akpaghị aka, nke na-adịghị echebara ọnọdụ nke ngwa nke ụfọdụ ihe owuwu. Onye nrụpụta nke ngwa bandit, bụ nke ejiri nyocha koodu ahụ, kwupụtara echiche na n'ihi ọnụ ọgụgụ dị elu nke ezigbo ụgha, nsonaazụ nyocha ahụ enweghị ike were ya dị ka adịghị ike na-enweghị nyocha akwụkwọ ntuziaka ọzọ nke mbipụta ọ bụla.
Dịka ọmụmaatụ, onye nyocha ahụ na-ewere iji ndị na-emepụta nọmba enweghị ntụkwasị obi na algọridim hashing, dị ka MD5, bụ nsogbu nchekwa, ebe enwere ike iji ụdị algọridim dị otú ahụ maka ebumnuche na-adịghị emetụta nchekwa. Onye nyocha ahụ na-atụlekwa nhazi ọ bụla nke data mpụga na ọrụ ndị na-adịghị ize ndụ dị ka pickle, yaml.load, subprocess na eval nsogbu, mana ojiji nke a apụtaghị na ọ bụ adịghị ike na n'eziokwu, enwere ike itinye ọrụ ndị a n'enweghị ihe egwu nchekwa. .
N'ime ule ndị e ji mee ihe n'ọmụmụ ihe:
- Iji ọrụ nwere ike adịghị mma exec, mktemp, eval, mark_safe, wdg.
- Ntọala enweghị nchebe nke ikike ịnweta faịlụ.
- Ịgbakwunye oghere netwọk na oghere netwọk niile.
- Ojiji nke okwuntughe na igodo nke akọwapụtara nke ọma na koodu.
- Iji akwụkwọ ndekọ aha nwa oge eburu ụzọ kọwaa.
- Iji ngafe ma gaa n'ihu na ndị na-ahụ maka ewepu ụdị nwude niile;
- Ịmalite ngwa webụ dabere na ụkpụrụ webụ Flask nwere ọnọdụ nbibi agbanyere.
- Iji ụzọ mwepu data adịghị mma.
- Na-eji MD2, MD4, MD5 na SHA1 ọrụ hash.
- Iji akara DES na-enweghị nchebe na ụdịdị nzuzo.
- Iji mmejuputa HTTPSConnection na-enweghị nchebe na ụfọdụ ụdị Python.
- Na-akọwapụta faịlụ: // atụmatụ na ulopen.
- Iji pseudorandom nọmba generators mgbe ị na-arụ ọrụ cryptographic.
- Iji Telnet protocol.
- Iji nyocha XML na-enweghị nchebe.
Na mgbakwunye, enwere ike ịmara na achọpụtara ngwugwu ọjọọ 8 na ndekọ PyPI. Tupu ewepu, ebudatara ngwugwu nsogbu karịa ugboro puku iri atọ. Iji zoo ihe omume ọjọọ yana ịgafe ịdọ aka ná ntị sitere na ndị nyocha dị mfe static na ngwugwu, etinyere koodu mgbochi site na iji Base30 wee gbuo ya ka emechara ya site na iji oku eval.
The noblesse, genesisbot, bụ, ahụhụ, noblesse2 na noblessev2 ngwugwu nwere koodu iji gbochie nọmba kaadị kredit na okwuntughe echekwara na Chrome na Edge nchọgharị, yana nyefee tokens akaụntụ site na ngwa Discord na zipu data sistemụ, gụnyere nseta ihuenyo nke ọdịnaya ihuenyo. Ihe ngwugwu pytagora na pytagora2 gụnyere ikike ibu na mebie koodu ndị ọzọ nwere ike ime.
isi: opennet.ru