A cikin PyPI sun riga sun shirya don tantance abubuwa biyu kuma da farko an riga an ba da rahoton wani lamari

Masu haɓaka ma'ajiyar fakitin PyPI Python sanar kwanan nan ta hanyar rubutu taswirar hanya don canzawa zuwa tantancewa Abubuwa biyu na wajibi don fakiti masu mahimmanci.

An ƙayyade mahimmanci ta adadin abubuwan zazzagewa kuma canjin zai shafi asusun masu kula da masu aikin da ke da alaƙa da saman 1% na fakiti a cikin watanni 6 ta abubuwan zazzagewa.

Ba kamar canzawa zuwa RubyGems, NPM, da GitHub ayyukan tabbatarwa abubuwa biyu ba, PyPI da farko za ta aiwatar da wani tsari wanda ya ƙunshi kyawawa amfani da alamar kayan aiki tare da maɓallan shiga.

A matsayin dalili shawarar amfani da alamu da ka'idar WebAuthn, An ambaci tsaro mafi girma idan aka kwatanta da samar da kalmomin shiga lokaci guda (ikon yin amfani da TOTP maimakon alamu zai kasance a matsayin zaɓi).

Ana iya samun alamun kyauta, To, Google ya dauki nauyin shirin kuma ya ware maɓallan Titan 4000 don aikin. Kowane mai kula zai iya buƙatar alamun USB-C ko USB-A kyauta. Ana aika alamar ta biyu azaman madadin idan babban alamar ta lalace ko ta ɓace, don rage haɗarin rasa damar shiga ma'ajiyar da kuma ceci masu haɓakawa daga yin tafiya ta hanya mai wahala.

Abin takaici Ana iya aika alamun kawai zuwa Austria, Belgium, Kanada, Faransa, Jamus, Italiya, Japan, Spain, Switzerland, UK da Amurka.

Abokan hulɗa daga wasu ƙasashe suna iya siya da kansu Alamu masu dacewa FIDO U2F kamar Yubikey da Thetis tokens. A matsayin madadin, kuma yana yiwuwa a yi amfani da aikace-aikacen tantance kalmar sirri na lokaci ɗaya waɗanda ke goyan bayan ka'idar TOTP, kamar Authy, Google Authenticator, da FreeOTP, maimakon alama.

Shirin bai kasance ba tare da matsala ba.da kyau marubucin fakitin Atomicwrites, wanda ke da saukewa miliyan 6 kowane wata da miliyan 38 a cikin watanni 6, ba ya son canzawa zuwa ga tantancewa abubuwa biyu kuma yayi ƙoƙarin sake saita ma'aunin zazzagewar don keɓe kunshin ku daga lissafin mahimmanci.

Don sake farawa, da farko cire kunshin sannan kuma zazzage sabon sigar, har zuwa wannan lokacin ya Ina tsammanin irin wannan magudin zai sake saita counter, amma abin mamaki ga mai haɓakawa, an cire duk tsofaffin nau'ikan su daga ma'ajiyar, wanda ya haifar da matsala ga ayyukan da suka dogara da ɗakin karatu, wanda wasu masu haɓaka suka kwatanta da lamarin da ya faru sakamakon cire kunshin daga bangaren hagu a NPM.

Matsalar ta kara dagulewa bayan an cire. marubucin atomicwrites ya kasa sauke tsofaffin nau'ikan, waɗanda ba a mayar da su ba sai washegari bayan masu gudanar da PyPI suka shiga tsakani.

Bayan faruwar lamarin. marubucin kunshin ya yanke shawarar dakatar da haɓaka rubutun atomic da deprecate fakitin. Dalilin da aka bayar shi ne cewa yana haɓaka aikin a matsayin abin sha'awa a cikin lokacin hutunsa kuma ƙarin buƙatun da ke dagula aikin ba su rama lokacin da aka kashe don kulawa da kyauta na irin wannan sanannen kunshin.

Marubucin atomicwrites yayi jayayya cewa ya gwammace ya rubuta lamba don nishaɗi kawai, kuma ana iya kula da ƙarin kariya daga garkuwa da maharan lokacin da kuka biya.

Laburaren atomicwrites ya ƙunshi kusan layukan lamba 200 kuma yana ba da ayyuka don rubuta fayiloli ta atomatik. A matsayin musanya, zaku iya amfani da kira na yau da kullun os.replace da os.rename (aikin yana tafasa ƙasa don rubutawa zuwa fayil tare da suna na ɗan lokaci da sake suna fayil ɗin manufa lokacin da aka shirya).

Tare da fiye da fakiti 350 a halin yanzu a cikin ma'ajin PyPI, za a yi amfani da ingantaccen abu biyu zuwa kusan fakiti 000. An shirya shafi na musamman don bincika idan an haɗa asusu a cikin lissafin. Har yanzu ba a tantance ainihin ranar da za a haɗa takaddun shaida biyu na wajibi ba, ana sa ran hakan zai faru a cikin watanni masu zuwa.

Finalmente idan kuna sha'awar ƙarin sani game da shi, zaku iya bincika cikakkun bayanai a cikin bin hanyar haɗi.


Kasance na farko don yin sharhi

Bar tsokaci

Your email address ba za a buga. Bukata filayen suna alama da *

*

*

  1. Wanda ke da alhakin bayanan: Miguel Ángel Gatón
  2. Manufar bayanan: Sarrafa SPAM, sarrafa sharhi.
  3. Halacci: Yarda da yarda
  4. Sadarwar bayanan: Ba za a sanar da wasu bayanan ga wasu kamfanoni ba sai ta hanyar wajibcin doka.
  5. Ajiye bayanai: Bayanin yanar gizo wanda Occentus Networks (EU) suka dauki nauyi
  6. Hakkoki: A kowane lokaci zaka iyakance, dawo da share bayanan ka.