用于加密python代码的未经审核的安全工具。
lockdown的Python项目详细描述
使用aes-256加密本地python源代码的工具,并动态地 加载并运行它,并将其放入锁定命名空间。 使用HMAC进行完整性检查,AES-256在计数器模式下进行加密。
未对安全漏洞进行审核。 自担风险使用。我对你不听警告不负责任。
示例用法:
#!/bin/bash lockdown lockedfiles.vault secret/creds.py secret/my_funcs.py # Enter and repeat password. # Now would be a good time to delete the files you locked, # but make sure not to lose that vault file.
在python中:
#!/usr/bin/env python from lockdown import Lockdown locker = Lockdown('lockedfiles.vault') # Enter password. locker.unlock() # Login with encrypted credentials. Python files aren't there! # Note: It collapsed the path. # (so it's locker.creds, not locker.secret.creds) some_login(locker.creds.USERNAME, locker.creds.PASSWORD) # Call a function. # NOTE: These can't import vaulted files within functions. # Files are lost after unlocking! locker.my_funcs.scoobydoo() # To leave files out, do this instead: locker.unlock(delete=False)
您可以看到潜在的用途,例如使用密钥锁定文件 和具有主密码或禁用脚本功能的凭据 不公开源代码,除非密码可用。