Package Health Score

54 / 100

security
Security review needed
popularity
Recognized
maintenance
Inactive
community
Sustainable

Explore Similar Packages

hush
42

Popularity

Recognized

GitHub Stars: 2.17K
Forks: 1.07K
Contributors: 60

Direct Usage Popularity

Based on project statistics from the GitHub repository for the PyPI package shuup, we found that it has been starred 2,170 times.

Security

Security review needed

Security and license risk for latest version

Release Date: Aug 17, 2021
Direct Vulnerabilities: 0
C
0
H
0
M
0
L
Indirect Vulnerabilities: 0
C
0
H
0
M
0
L
License Risk: 1
H
1
M
0
L

All security vulnerabilities belong to production dependencies of direct and indirect packages.

License

proprietary

Security Policy

We found a way for you to contribute to the project! Looks like shuup is missing a security policy.

You can connect your project's repository to Snyk to stay up to date on security alerts and receive automatic fix pull requests.

Keep your project free of vulnerabilities with Snyk

Maintenance

Inactive

Commit Frequency

No Recent Commits

Open Issues: 145
Open PR: 30
Last Release: 3 years ago
Last Commit: 3 years ago

Further analysis of the maintenance status of shuup based on released PyPI versions cadence, the repository activity, and other data points determined that its maintenance is Inactive.

An important project maintenance signal to consider for shuup is that it hasn't seen any new versions released to PyPI in the past 12 months, and could be considered as a discontinued project, or that which receives low attention from its maintainers.

In the past month we didn't find any pull request activity or change in issues status has been detected for the GitHub repository.

Community

Sustainable

Readme: Yes
Contributing.md: No
Code of Conduct: No
Contributors: 60
Funding: No

With more than 10 contributors for the shuup repository, this is possibly a sign for a growing and inviting community.

We found a way for you to contribute to the project! Looks like shuup is missing a Code of Conduct.

Embed Package Health Score Badge

Keep your project healthy

Check your requirements.txt

Ensure all the packages you're using are healthy and well-maintained

Snyk Vulnerability Scanner

Get health score & security insights directly in your IDE

Package

Python Versions Compatibility: >=3.6

Age: 6 years
Latest Release: 3 years ago
Dependencies: 32 Direct / 57 Total
Versions: 146
Maintainers: 2
Wheels: OS Independent

Readme

Shuup

Shuup is an Open Source E-Commerce Platform based on Django and Python.

Copyright

Shuup is International Registered Trademark & Property of Shuup Commerce Inc., Business ID: BC1126729, Business Address: 1500 West Georgia Suite 1300, Vancouver, BC, V6G-2Z6, Canada.

CLA

Contributor License Agreement is required for any contribution to this project. Agreement is signed as a part of pull request process. See the CLA.rst file distributed with Shuup.

License

Shuup is published under Open Software License version 3.0 (OSL-3.0). See the LICENSE file distributed with Shuup.

Some external libraries and contributions bundled with Shuup may be published under other compatible licenses. For these, please refer to VENDOR-LICENSES.md file in the source code tree or the licenses included within each package.

Chat

We have a Gitter chat room for Shuup. Come chat with us!

Docker quick start

Fastest way to get Shuup up and running is to use Docker.

Run:
```
docker-compose up
```
Open localhost:8000/sa in a browser, log in with username: admin password: admin

Full Shuup installation guide

See Getting Started.

For simple project example see our Django-project template.

Getting Started with Shuup development

See Getting Started with Shuup Development.

Contributing to Shuup

Interested in contributing to Shuup? Please see our Contribution Guide.

Documentation

Shuup documentation is available online at Read the Docs.

Documentation is built with Sphinx.

Issue the following commands to build the documentation:

pip install -r requirements-doc.txt
cd doc &amp;&amp; make html

To update the API documentation rst files, e.g. after adding new modules, use command:

./generate_apidoc.py

Roadmap

v3 (Q4 2021)

Initial Django 3.x support
Latest Jinja support
Deprecate theme folders under Shuup front which are used to override individual macros in macro folders. This does not work well with latest Jinja and adds extra complexity.

v4 (Q1 2022)

Move Shuup front, xtheme and theming features to own addons. This so that projects not ready for updating theme or front can still get latest Shuup.
Introduce new default theme and overhaul templates structure to be more simple (likely Bootstrap 5 will be used).
Bump admin Bootstrap version to match with the new front
Move various other not essential apps in this repository to addons for better version management.

Additional Material

Django-project template. Django-project template.
Provides system.
Core settings.
Front settings.
Admin settings.
Extending Shuup.

Admin Preview

FAQs

What is shuup?

E-Commerce Platform. Visit Snyk Advisor to see a full health score report for shuup, including popularity, security, maintenance & community analysis.

Is shuup popular?

The python package shuup receives a total of 1,003 weekly downloads. As such, shuup popularity was classified as a recognized. Visit the popularity section on Snyk Advisor to see the full health analysis.

Is shuup well maintained?

We found indications that shuup is an Inactive project. See the full package health analysis to learn more about the package maintenance status.

Is shuup safe to use?

While scanning the latest version of shuup, we found that a security review is needed. A total of 0 vulnerabilities or license issues were detected. See the full security scan results.

Last updated on 15 April-2024, at 11:40 (UTC).

Build a secure application checklist

Select a recommended open source package

Minimize your risk by selecting secure & well maintained open source packages

DONE

Scan your app for vulnerabilities

Scan your application to find vulnerabilities in your: source code, open source dependencies, containers and configuration files

SCAN NOW

Fix identified vulnerabilities

Easily fix your code by leveraging automatically generated PRs

AUTO FIX

Monitor for new issues

New vulnerabilities are discovered every day. Get notified if your application is affected

MONITOR APP

Package Health Score

Explore Similar Packages

Direct Usage Popularity

Security and license risk for latest version

Commit Frequency

Embed Package Health Score Badge

Keep your project healthy

Check your requirements.txt

Snyk Vulnerability Scanner

Readme

Shuup

Copyright

CLA

License

Chat

Docker quick start

Full Shuup installation guide

Getting Started with Shuup development

Contributing to Shuup

Documentation

Roadmap

v3 (Q4 2021)

v4 (Q1 2022)

Additional Material

Admin Preview

shuup dependencies

FAQs

What is shuup?

Is shuup popular?

Is shuup well maintained?

Is shuup safe to use?

Build a secure application checklist

Select a recommended open source package

Scan your app for vulnerabilities

Source Code

Open Source

Container

Config

Fix identified vulnerabilities

Monitor for new issues