Youtube generates revenue from user ad views, and it’s logical for the platform to implement restrictions to prevent people from downloading videos or even watching them on an unofficial client like YouTube Vanced. In this article, I will explain the technical details of these security mechanisms and how it’s possible to bypass them.

...

Since mid-2021, YouTube has included the query parameter n in the majority of file URLs. This parameter needs to be transformed using a JavaScript algorithm located in the file base.js, which is distributed with the web page. YouTube utilizes this parameter as a challenge to verify that the download originates from an “official” client. If the challenge is not resolved and n is not transformed correctly, YouTube will silently apply throttling to the video download.

The JavaScript algorithm is obfuscated and changes frequently, so it’s not practical to attempt reverse engineering to understand it. The solution is simply to download the JavaScript file, extract the algorithm code, and execute it by passing the n parameter to it.

...

Many projects currently use these techniques to circumvent the limitations put in place by YouTube in order to prevent video downloads. The most popular one is yt-dlp (a fork of youtube-dl) programmed in Python, but it includes its own custom JavaScript interpreter to transform the n parameter.

No More GIL! the Python team has officially accepted the proposal (PEP-703)

Aujourd’hui on se penche sur une technique de piratage très maligne, vu qu’elle repose principalement sur : votre répondeur. Martin Vigo, un expert en cybersécurité, a mis au point un soft qui permet d’exploiter des répondeurs du monde entier. En y accédant, il peut ainsi aller réinitialiser les accès de nombreux services utilisant la double authentification, comme Whatsapp, Paypal, Facebook ou encore Linkedin, bref, tous les services qui peuvent vous envoyer un code par téléphone.

Pylint is a great static code analyser for Python code. I have been using it for several years, in various projects, and it's simple to use yet very powerful.

I even contributed to Pylint by submitting a new rule a few years ago : implicit-str-concat.

For an introduction to Pylint, you …

open-source non-profit search engine for shadow libraries, like Sci-Hub, Library Genesis, and Z-Library

🔍 Moteur de recherche des bibliothèques clandestines : livres, journaux, BD, magazines. ⭐️ Bibliothèque Z-Library, Bibliothèque Genesis, Sci-Hub. ⚙️ Entièrement résilient grâce à un code et à des données open source. ❤️ Faites passer le mot : tout le monde est le bienvenu ici !

Technical write-up on how they setup this: https://annas-blog.org/how-to-run-a-shadow-library.html

Let’s start with our tech stack. It is deliberately boring. We use Flask, MariaDB, and ElasticSearch. That is literally it. Search is largely a solved problem, and we don’t intend to reinvent it.

Source: @sebsauvage

I wrote my latest post on fpdf2 almost a year ago. As we just released a new version, v2.7, this is the time to mention some recent additions to this library! 😊

This article will present some of the major features introduced between v2.5.3 & v2.7.3 of …

The other day, while working on fpdf2, I used @dataclass, a nice decorator that came in the standard library with Python 3.7, to quickly define a class that mostly stored data.

Then a question came to my mind: is the __slots__ memory optimization compatible with …

This describes tools and techniques that can identify memory leaks in Long running Python programs:

• Is it a Leak?
• Sources of Leaks
• A Bit About (C)Python Memory Management
  • Reference Counts
  • Garbage Collection
  • The Big Picture
  • CPython’s Object Allocator (pymalloc)

Here is a visualisation of memory allocators from top to bottom (from the Python source Objects/obmalloc.c):

    _____   ______   ______       ________
   [ int ] [ dict ] [ list ] ... [ string ]       Python core         |
+3 | <----- Object-specific memory -----> | <-- Non-object memory --> |
    _______________________________       |                           |
   [   Python's object allocator   ]      |                           |
+2 | ####### Object memory ####### | <------ Internal buffers ------> |
    ______________________________________________________________    |
   [          Python's raw memory allocator (PyMem_ API)          ]   |
+1 | <----- Python memory (under PyMem manager's control) ------> |   |
    __________________________________________________________________
   [    Underlying general-purpose allocator (ex: C library malloc)   ]
 0 | <------ Virtual memory allocated for the python process -------> |

   =========================================================================
    _______________________________________________________________________
   [                OS-specific Virtual Memory Manager (VMM)               ]
-1 | <--- Kernel dynamic storage allocation & management (page-based) ---> |
    __________________________________   __________________________________
   [                                  ] [                                  ]
-2 | <-- Physical memory: ROM/RAM --> | | <-- Secondary storage (swap) --> |

You can use this program but I wrote a simple python script which enumerates the exported functions from the provided DLL (dll-def.py)

A simple way to prevent DLL hijacking from happening would be for applications to always use absolute paths instead of relative ones. Although some applications (notably portable ones) will not always be able to do so, applications located in \system32\ and relying on DLLs in the same folder have no excuse for doing otherwise. The better option, which only very few Windows executables seem to do, is to verify all DLLs before loading them (e.g. by checking their signatures) - this would largely eliminate the problem.

Following last week animated PDF adventure, I have been reading a series of one page dungeons... And yesterday I had the opportunity to play the best one in my opinion: The Sky-Blind Spire by Michael Prescott.

It has everythng I love on one page: a maze to explore, mysteries to …

Last week, while translating John Harper's micro-TTRPG World of Dungeons: Turbo Breakers, I discovered the wonderful world of one page dungeons, starting with Michael Prescott splendid production at trilemma.com and also the yearly One Page Dungeon Context.

While crawling through the OPDC 2021 entries, I discovered a great map …

LibreOffice macro script to change the font of the select objects

Works well with LibreOfficeDraw

On this site you will learn data visualization with Python. You will find code examples of Python graphs made with matplotlib, seaborn, plotly and other packages

• « Le Frido » contient des mathématiques du niveau de l'agrégation. Il couvre (à peu près) tout le programme.

• « Giulietta » contains more or less everything I know in mathematics.

This document is a compilation of many stuff I wrote during my mathematical live. There are mainly three parts :
— Exercises for undergrad (in French).
— Theory for undergrad (in French, mainly devoted to l’agrégation)
— Theory I studied during my thesis (in English)
— Some research material (the BTZ part, in English)

Il existe de nombreux logiciels de mathématique. Notre préféré est Sage pour une raison très précise : Sage est (en simplifiant) un module pour python. Donc quand on travaille en Sage, on dispose de tout Python.

Initiation ludique, pédagogique & gratuite à la programmation en Python !

Ce projet est issu d'une thèse en didactique de l'informatique de Matthieu Branthom portant sur l'enseignement-apprentissage de la programmation informatique dans l'enseignement secondaire

Découvert via @sebsauvage : https://sebsauvage.net/links/?EiFcHg

Un site pédagogique pour apprendre les bases de Python sous forme de jeu: notion de variables, exécution conditionnelle, boucles.
Et les équivalents Scratch sont même indiqués.

fpdf2 is a simple & fast PDF creation library for Python that I have been maintaining since mid-2020.

In this article, I'm going to present some of the new features that landed since my last post on the subject. Hence, this will cover versions 2.5.0, 2.5.1 & 2 …

Added

• new parameters new_x and new_y for cell() and multi_cell(), replacing ln=0, thanks to @gmischler
• new add_highlight() method to insert highlight annotations: documentation
• new offset_rendering() method: documentation
• new .text_mode property: documentation
• the page structure of the documentation has been revised, with a new page about adding text, thanks to @gmischler
• a warning is now raised if a context manager is used inside an unbreakable() section, which is not supported

Changed

• local_context() can now "scope" even more properties, like blend_mode: documentation

Fixed

• No font properties should be leaked anymore after using markdown or in any other situations (cf. #359), thanks to @gmischler
• If multi_cell(align="J") is given text with multiple paragraphs (text followed by an empty line) at once, it now renders the last line of each paragraph left-aligned,
  instead of just the very last line (cf. #364), thanks to @gmischler
• a regression: now again multi_cell() always renders a cell, even if txt is an empty string - cf. #349
• a bug with string width calculation when Markdown is enabled - cf. #351
• a few bugs when parsing some SVG files - cf. #356, #358 & #376
• a bug when using multi_cell(..., split_only=True) inside an unbreakable section - cf. #359

Deprecated

• The parameter ln to cell() and multi_cell() is now deprecated, use new_x and new_y instead.
• The parameter center to cell() is now deprecated, use align="C" instead.

Displaying deprecation warnings

DeprecationWarnings are not displayed by Python by default.

Hence, every time you use a newer version of fpdf2, we strongly encourage you to execute your scripts
with the -Wd option (cf. documentation)
in order to get warned about deprecated features used in your code.

This can also be enabled programmatically with warnings.simplefilter('default', DeprecationWarning).

TL;DR version of lessons from the post:

1. Writing open source software can be very rewarding in ways you can’t predict
2. Be in it for the long haul
3. Ship it and ship regularly
4. Have broad, open-ended goals
5. If you care enough, you’ll find the time
6. No one cares about your unit test coverage
7. There’s no shame in marketing
8. Clear it with your employer
9. Foster community
10. Keep it enjoyable

Source: https://www.reddit.com/r/Python/comments/smta85/lessons_learned_from_my_10_year_open_source/

Can't I just get the data, without it being turned into objects?
We'll use this mechanism to convert tagged nodes to almost-native types, while preserving the tags.

It's likely possible to handle [undefined tag prefixes and undefined aliases] in a way similar to how we handled undefined tags

A very clear and detailed article!