Package Health Score

49 / 100

security
Security review needed
popularity
Limited
maintenance
Inactive
community
Active

Popularity

Limited

GitHub Stars: 407
Forks: 214
Contributors: 60

Direct Usage Popularity

Based on project statistics from the GitHub repository for the PyPI package box-oauth, we found that it has been starred 407 times.

Security

Security review needed

Security and license risk for latest version

Release Date: Aug 29, 2019
Direct Vulnerabilities: 0
C
0
H
0
M
0
L
Indirect Vulnerabilities: 1
C
12
H
30
M
4
L
License Risk: 0
H
14
M
0
L

All security vulnerabilities belong to production dependencies of direct and indirect packages.

License

Apache-2.0

Security Policy

We found a way for you to contribute to the project! Looks like box-oauth is missing a security policy.

A security vulnerability was detected in an indirect dependency that is added to your project when the latest version of box-oauth is installed.

We highly advise you to review these security issues.

You can connect your project's repository to Snyk to stay up to date on security alerts and receive automatic fix pull requests.

Fix it in your project with Snyk!

Maintenance

Inactive

Commit Frequency

Open Issues: 21
Open PR: 1
Last Release: 5 years ago
Last Commit: 2 months ago

Further analysis of the maintenance status of box-oauth based on released PyPI versions cadence, the repository activity, and other data points determined that its maintenance is Inactive.

An important project maintenance signal to consider for box-oauth is that it hasn't seen any new versions released to PyPI in the past 12 months, and could be considered as a discontinued project, or that which receives low attention from its maintainers.

In the past month we didn't find any pull request activity or change in issues status has been detected for the GitHub repository.

Community

Active

Readme: Yes
Contributing.md: Yes
Code of Conduct: No
Contributors: 60
Funding: No

With more than 10 contributors for the box-oauth repository, this is possibly a sign for a growing and inviting community.

We found a way for you to contribute to the project! Looks like box-oauth is missing a Code of Conduct.

Embed Package Health Score Badge

Keep your project healthy

Check your requirements.txt

Ensure all the packages you're using are healthy and well-maintained

Snyk Vulnerability Scanner

Get health score & security insights directly in your IDE

Package

Python Versions Compatibility: Unspecified

Age: 5 years
Latest Release: 5 years ago
Dependencies: 53 Direct / 56 Total
Versions: 4
Maintainers: 1
Wheels: OS Independent

Readme

Python OAuth2 Headless Client for Box

Python package to help connect with a Box API in cases where you don't have access to get the JWT file (better long term solution). In cases where you want to connect to the Box API through OAuth2 in a headless manner (without a browser) this can help

Dependencies

This package depends on keyring, selenium, and boxsdk. Since selenium runs in headless mode, you will need to make sure chromedriver is installed on your machine (this is done outside of pip unfortunately).

For instructions on how to do this, see here

Usage

from box_auth.box_auth import BoxAuth

box = BoxAuth(
    client_id, # From Box developer console
    client_secret, # From box developer console
    box_username,
    box_password,
    user_email # This is used by your keyring
)

box.login() # Login

print(box.get_current_user()) # Double check that it worked

To get the boxsdk client, just run:

Client = box.get_client()

Follow the boxsdk documentation for how to use the client to access box

Testing

You need the following variables in a config_test.py file (root directory) for the tests to work

client_id = # You can find this in the developer console, under your app configuration
client_secret =  # ""
box_username =
box_password
user_email # This is used by your keyring to store the access and refresh token
user # This is used by tests to check that you are the correct user

Then from the root directory, simply run

pytest

Install

As a pip package

pip install box_oauth

python setup.py

FAQs

What is box-oauth?

Box headless OAuth2 client. Visit Snyk Advisor to see a full health score report for box-oauth, including popularity, security, maintenance & community analysis.

Is box-oauth popular?

The python package box-oauth receives a total of 62 weekly downloads. As such, box-oauth popularity was classified as limited. Visit the popularity section on Snyk Advisor to see the full health analysis.

Is box-oauth well maintained?

We found indications that box-oauth is an Inactive project. See the full package health analysis to learn more about the package maintenance status.

Is box-oauth safe to use?

While scanning the latest version of box-oauth, we found that a security review is needed. A total of 47 vulnerabilities or license issues were detected. See the full security scan results.

Last updated on 12 April-2024, at 14:15 (UTC).

Build a secure application checklist

Select a recommended open source package

Minimize your risk by selecting secure & well maintained open source packages

DONE

Scan your app for vulnerabilities

Scan your application to find vulnerabilities in your: source code, open source dependencies, containers and configuration files

SCAN NOW

Fix identified vulnerabilities

Easily fix your code by leveraging automatically generated PRs

AUTO FIX

Monitor for new issues

New vulnerabilities are discovered every day. Get notified if your application is affected

MONITOR APP

box-oauth

Box headless OAuth2 client For more information about how to use this package see README

Ensure you're using the healthiest python packages

Package Health Score

Popularity

Direct Usage Popularity

Security

Security and license risk for latest version

Maintenance

Commit Frequency

Community

Embed Package Health Score Badge

Keep your project healthy

Check your requirements.txt

Snyk Vulnerability Scanner

Package

Readme

Python OAuth2 Headless Client for Box

Dependencies

Usage

Testing

Install

box-oauth dependencies

FAQs

What is box-oauth?

Is box-oauth popular?

Is box-oauth well maintained?

Is box-oauth safe to use?

Build a secure application checklist

Select a recommended open source package

Scan your app for vulnerabilities

Fix identified vulnerabilities

Monitor for new issues

Package Health Score

Direct Usage Popularity

Security and license risk for latest version

Commit Frequency

Embed Package Health Score Badge

Keep your project healthy

Check your requirements.txt

Snyk Vulnerability Scanner

Readme

Python OAuth2 Headless Client for Box

Dependencies

Usage

Testing

Install

box-oauth dependencies

FAQs

What is box-oauth?

Is box-oauth popular?

Is box-oauth well maintained?

Is box-oauth safe to use?

Build a secure application checklist

Select a recommended open source package

Scan your app for vulnerabilities

Source Code

Open Source

Container

Config

Fix identified vulnerabilities

Monitor for new issues