How To Dev

Introduction In previous articles, I have guided you through various ways to enhance project security through direct implementation. Now, I will demonstrate how to perform security audits for the packages you use. This is also a critical factor because while your codebase may be secure, a library you are using could contain hidden security risks that hackers can exploit. Detail First, let us look at how to check a package for security risks. Before installing, you can visit certain websites to verify package information, such as using https://security.snyk.io . This website provides comprehensive information to assess the health of a package and supports multiple languages. NPM Next is auditing security for the packages your project is currently using. Because technology changes rapidly, a package you use today might be fine, but it could reveal security risks a few months later. Therefore, this check needs to be performed regularly depending on the scale of the product you are develop...

Introduction pyenv is a tool for managing multiple Python versions on the same system, while Poetry is a modern tool for dependency management and project packaging. This combination helps developers control exact Python versions, automate virtual environment creation, and ensure consistent libraries across different machines. Detail First, use the following commands to install and use pyenv and poetry brew install pyenv poetry pyenv install 3.11.9 pyenv global 3.11.9 pyenv local 3.12.0 poetry env use python poetry config virtualenvs.in-project true poetry init -n poetry add requests poetry install brew install pyenv poetry: Install pyenv and poetry tools via Homebrew. pyenv install 3.11.9: Install Python version 3.11.9 to the system, you could install multiple Python version with the same way. pyenv global 3.11.9: Set Python 3.11.9 as the system-wide default version. pyenv local 3.12.0: Set Python 3.12.0 as the specific version for the current directory. poetry env...