#api

A Deep Dive into the MythX Smart Contract #security Analysis #api
▻https://hackernoon.com/a-deep-dive-into-the-mythx-smart-contract-security-analysis-api-3c2cd8e6

https://cdn-images-1.medium.com/max/1024/1*xQE3fnz9oqWxFFT6jcUALw.png

This week, we launched five challenges as part of the Ethereal Virtual Hackathon with a prize pool of $6k (paid in crypto, obviously). This quick guide explains how to perform an analysis with MythX API.What is MythX?MythX is a security analysis platform for #ethereum smart contracts. It performs a comprehensive range of industry-leading analyses on smart contracts, including input fuzzing, static and symbolic analysis.The goal of MythX is to make security analysis available to all Ethereum developers — even those who are not security-savvy. In the ongoing Hackathon we award prizes in five categories. For more details on the requirements and prizes check out the Gitcoin issues:Foundational ToolsContinuous Integration ToolsIDEs and Code EditorsWeb appsFreestyleHow MythX API worksMythX clients (...)

#hackernoon-top-story #smart-contracts

Toute une série de reportages sur les abeilles aux 4 coins du monde que je n’ai pas vu, si ça se trouve c’est plus sur les apiculteurs...

L’intégralité de la série : ▻https://www.arte.tv/fr/videos/RC-017411/les-maitres-des-abeilles

Népal : ▻https://www.arte.tv/fr/videos/072419-006-A/des-maitres-des-abeilles-nepal-les-gurungs-et-l-abeille-geante

Sicile : ▻https://www.arte.tv/fr/videos/072419-005-A/les-maitres-des-abeilles-italie-l-abeille-noire-de-sicile

Argentine : ▻https://www.arte.tv/fr/videos/072419-002-A/les-maitres-des-abeilles-argentine-a-la-recherche-du-paradis

Inde : ▻https://www.arte.tv/fr/videos/072419-004-A/les-maitres-des-abeilles-inde-le-miel-des-montagnes-bleues

Indonésie : ►https://www.arte.tv/fr/videos/072419-001-A/les-maitres-des-abeilles-indonesie-l-arbre-a-miel-sacre

Slovénie : ▻https://www.arte.tv/fr/videos/072419-003-A/les-maitres-des-abeilles-slovenie-le-refuge-de-l-abeille-carniolienne

Mexique : ▻https://www.arte.tv/fr/videos/072419-007-A/les-maitres-des-abeilles-mexique-l-abeille-maya

Kénya : ▻https://www.arte.tv/fr/videos/072419-008-A/les-maitres-des-abeilles-kenya-l-abeille-les-yaaku-et-l-oiseau

et ceux à venir : ▻https://www.arte.tv/fr/videos/RC-017411/les-maitres-des-abeilles/prochainement

#abeilles #apiculture

#trading Cryptocurrencies through APIs
▻https://hackernoon.com/trading-crypto-through-apis-a84b23cd05b?source=rss----3a8144eabfe3---4

https://cdn-images-1.medium.com/max/1024/1*IcVLvj4NWsKHVIYeS5aQQA.png

So you’re an advanced #cryptocurrency trader or maybe an app developer who wants to seamlessly plug into every major exchange. You have a general understanding of the #api landscape, but might not have known the power of using Shrimpy to manage all of your exchange API connections. Keep reading!In this article, we’ll be showing you how to set up cryptocurrency trading using APIs. This process can be repeated for every major exchange due to the universal developer tools provided by Shrimpy. The alternative being libraries like CCXT, which require you to write custom code for every exchange, manage infrastructure, and scale a farm of servers which executes trades and collects data across every exchange.Shrimpy vs CCXT: The Case for Centralization in a Decentralized EcosystemCreate & (...)

#investing #bitcoin

Guide to Web Authentication
▻https://webauthn.guide

The Web Authentication API (also known as WebAuthn) is a specification written by the W3C and FIDO, with the participation of Google, Mozilla, Microsoft, Yubico, and others. The API allows servers to register and authenticate users using public key cryptography instead of a password.

Système d’authentification basé sur une clé publique/privée et non plus sur un mot de passe (enfin !). Reste quand même le problème du stockage de la clé privée et son transfert entre les différents terminaux d’un utilisateur...
Prévu pour permettre la fédération d’identité côté utilisateur, c’est potentiellement le futur pour l’authentification web (?) Reste à savoir si les grandes plate-forme et les utilisateurs vont s’en emparer ou si ça ne sera qu’une tentative de plus (comme le moribond OpenID par ex)...

Voir aussi :
– la doc de l’API sur MDN (en anglais) : ▻https://developer.mozilla.org/en-US/docs/Web/API/Web_Authentication_API
– une démo jouable (POC) avec code source et débogueur : ▻https://webauthn.org
– une implémentation javascript + node.js : ▻https://github.com/fido-alliance/webauthn-demo avec un explication détaillée : ▻https://slides.com/fidoalliance/jan-2018-fido-seminar-webauthn-tutorial#/25

– la recommandation du W3C : ▻https://www.w3.org/TR/webauthn
– la compatibilité des navigateurs : ▻https://www.caniuse.com/#feat=webauthn

#WebAuthn #authentification #API #openid #SPIP #web_dev #auth

Guzzle, PHP HTTP client — Guzzle Documentation
▻http://docs.guzzlephp.org/en/stable

Guzzle is a PHP HTTP client that makes it easy to send HTTP requests and trivial to integrate with web services.
– Simple interface for building query strings, POST requests, streaming large uploads, streaming large downloads, using HTTP cookies, uploading JSON data, etc...
– Can send both synchronous and asynchronous requests using the same interface.
– Abstracts away the underlying HTTP transport, allowing you to write environment and transport agnostic code; i.e., no hard dependency on cURL, PHP streams, sockets, or non-blocking event loops.

(en relation avec le ticket ▻https://core.spip.net/issues/3973 de SPIP)

#guzzle #PHP #HTTP #API #curl #SPIP

Preventing Mobile App and #api Abuse
▻https://hackernoon.com/preventing-mobile-app-and-api-abuse-a3c50c72efc2?source=rss----3a8144eab

https://cdn-images-1.medium.com/max/900/1*INUY5BO-KcAQq9gGyugQFA.jpeg

An OWASP AppSec California 2019 TalkShipFast and ShipRaider made a return appearance at the sixth annual OWASP AppSec California as defender and attacker in Preventing Mobile App and API Abuse.AppSec California is a terrific conference, with interesting talks and attendees, and did I mention it is held on the beach in Santa Monica in late January? Most presentations were video taped, including my own here:▻https://medium.com/media/1a4a583f3980989ca82f4bc5bca93c55/hrefAs ShipFast launches its mobile app with hidden API keys and OAuth2 user authorization, we start by discussing the existing #security threats and how to counter them. Along the way, TLS, certificate pinning, HMAC call signing, app hardening, white box crypto, app attestation and more strengthen ShipFast’s security posture, but (...)

#android #ios #mobile-app-development

Best #healthcare APIs to Enhance your Software Security
▻https://hackernoon.com/best-healthcare-apis-to-enhance-your-software-security-f188038257c0?sour

https://cdn-images-1.medium.com/max/1000/1*CTUSmUB8MpevTaQgm6W4zw.jpeg

Healthcare is one of the biggest industries in the world, expected to reach approximately $10,06 trillion by 2020. Because of the huge demand for new and innovative tools and services, healthcare has always been among the pioneers for testing and implementing cutting-edge technologies.On the other hand, healthcare should pay double attention to its security as it deals with highly personal information. The misuse of this information can lead to anything, from stolen identity to death, even.We have collected a list of the best APIs that, in our opinion, can help you secure your healthcare software and ensure it is used as intended.The essentials to protect your appBefore we get down to the third-party services, let’s talk about the basics that you should consider when developing an  (...)

#api #payments #cybersecurity #healthcare-technology

Develop #trading Applications with Shrimpy’s #crypto Exchange #api
▻https://hackernoon.com/developing-trading-applications-with-shrimpys-crypto-exchange-api-4ee3c8

https://cdn-images-1.medium.com/max/1024/1*fvxx1mJNF3PuxMA2wI1FIw.png

As #cryptocurrency and digital asset markets continue to expand and mature, there is an increasing demand for a robust infrastructure solution to connect the fragmented liquidity markets spread across different exchanges. The crypto space has seen an influx of innovative cryptocurrency tracking and management products popping up across the industry.However, there still exists the challenge of integrating fully-featured trading capabilities into these applications. Although solutions currently exist in the market such a CCXT, these primarily exist as a software-only solution. Open source projects such as CCXT can be a great solution for developers looking to build applications for personal use but fall short when being scaled for business and enterprise use.The current state of crypto (...)

#development

Easily Impossible: One approach to designing a great API
▻https://hackernoon.com/easily-impossible-one-approach-to-designing-a-great-api-16fc02e42d?sourc

https://cdn-images-1.medium.com/max/720/1*qvVRZ3-X_HtASnsR29wmYA.png

Why building graphical user interfaces is hard.Why is it so hard to write and maintain UI code? One of the reasons is poor API design. Specifically poor balance of control vs effort over a set of use cases. Effort is the time it takes to implement a use case using an API. Control is how fine-grained the commands that we send to an API can be.This issue of balance is not GUI-specific, it’s a generic problem in API design. This post is my attempt to understand the dynamics between control and effort using examples from #frontend development.The lost art of geometryHere’s a puzzle. Let’s say we have two rectangles. One is taller and wider than the other. We want to place and vertically center the smaller rectangle inside the larger one.The height of the larger rectangle is h1. The height of the (...)

#web-development #flutter #api-development #design-an-api

HTML5 Pre-resize images before uploading - Stack Overflow
▻https://stackoverflow.com/questions/10333971/html5-pre-resize-images-before-uploading

Exemple de manipulation d’image par le navigateur (redimensionnement) avant son POST vers un serveur
Le billet original sur mozilla-dev : ►https://hacks.mozilla.org/2011/01/how-to-develop-a-html5-image-uploader

La doc de l’API File de HTML5 : ▻https://developer.mozilla.org/fr/docs/Web/API/File/Using_files_from_web_applications

#image_upload #redimensionner #API_file #HTML5

Designing REST #api with Open API Specification (OAS) v2.0 & v3.0 using #swagger
▻https://hackernoon.com/designing-rest-api-with-open-api-specification-oas-v2-0-v3-0-using-swagg

https://cdn-images-1.medium.com/max/713/1*tkzn8P3QEj77FN-mMzyWbg.png

Disclaimer: I presume we all have written one or multiple API at certain point in time in our career, otherwise you would not have bumped into this article. The article does not describe what REST API is, rather you should have some basic knowledge about REST API before going through the article.Introduction:Generally when we write REST API, we focus a lot on implementation & very little time on designing the proper request / response schema, API resource models. We jot down just all necessary request & response (in most of the cases HTTP Code 200 series response) parameters in a document, get it reviewed quickly, accordingly we create some resource models & jump into implementation. This strategy works in small to mid-size companies or startup companies. But once you start (...)

#api-development #technology #rest-api

Building RESTful APIs (Authentication & Error Handling)
▻https://hackernoon.com/building-restful-apis-authentication-error-handling-4013681381a2?source=

▻https://medium.com/media/7a227f639a07519d5e744c1de06d2f11/hrefSubscribe to MobycastiTunes | Google Play | Soundcloud | Stitcher | SpotifyShow NotesJon Christensen and Chris Hickman of Kelsus and Rich Staats of Secret Stache continue their conversation on building RESTful APIs, specifically focusing on #authentication and error handling. REST stands for Representational State of Transfer.Some of the highlights of the show include:Importance of authentication with APIs to identify callers and their authorized permissionsStateless vs. stateful communication channels between entitiesSimplest authentication technique is to use basic HTTP metadata in headers; you must send it over an encrypted connectionExchanging short-lived tokens negotiated based upon user’s credentials is another  (...)

#restful-api #error-handling #api #aws

Limiting your #api requests: the right way
▻https://hackernoon.com/limiting-your-api-requests-the-right-way-9608b661a0ce?source=rss----3a81

https://cdn-images-1.medium.com/max/1024/1*JW_FfCiv7_6M_Na5iI7_lQ.jpeg

Image from @STR/AFP/GettyImagesHello everyone. My name is Alexander and I’m #javascript Developer. Today I want to tell you a story about me trying to find zen in building server application which will satisfy every API in the world.PrologueIt was started in June 2015 when Telegram announced their new bots platform within API. I was a full-stack Javascript and PHP developer working in a small web studio and all my job was to rapidly develop landing pages based on this stack. Idea of having your working robot right in your messenger was mind blowing, something similar I was developing in 2010 for ICQ. The only one remaining question was an idea of future bot. What it will do? How will I develop it? So I decided to write baneksbot.I started reading bot API everyday trying to understand how (...)

#queue #rate-limiting #request

ANOTHER way to call #restful #api in #redux
▻https://hackernoon.com/another-way-to-call-restful-api-in-redux-d8dd991d0779?source=rss----3a81

https://cdn-images-1.medium.com/max/1024/1*JYGU_MEBZaJfWw4HnQtvcg.jpeg

ANOTHER way to call restFul API in ReduxAnnouncing a general way to make developer life easier for calling API in #react-Redux.Photo by Randy Fath on UnsplashRecently, I’ve switched from backend development to the frontend side. in first sight, I found API call is truly tough.Why we need to make a type + action + take action (redux-saga)+ handler function 😐 for each API call?? and again a type + action + reducer to store the result. I keep asking my self.I do a lot of research and all sample and document are the same way more and less. like this example:Moving API requests to Redux-SagaSo I think to the other way, something more functional.API ClientAPI client is a structure to handle the most API call in one place without duplicate codes (DRY). I’ll explain this structure using redux (...)

#saga

« Les API c’est bien… en abuser ça craint ! »

Un appel à ne pas forcément utiliser des #API pour tout et n’importe quoi et, par exemple, dans certains cas, privilégier la mise à disposition des données, plutôt.

▻https://medium.com/@cq94/les-api-cest-bien-en-abuser-ca-craint-b5d1c92b32f2

#OpenData

#security in your OpenAPI Specification
▻https://hackernoon.com/security-in-your-openapi-specification-94d081603950?source=rss----3a8144

Learn how OpenAPI 2.0 and 3.0 can promote and emphasis #api Security as a first-class concern during the design phase of API development.It is no longer a mystery, APIs are eating the world. There are a lot of companies today that are offering their APIs as the primary medium to interact with a system, with the User Interface merely as a byproduct, or, in any case, not the primary product being sold. Companies such as Stripe and Twilio led the vanguard of this movement in 2012.Given this shift (which, by the way, is still happening), APIs have started to get more and more complicated, and so the API development process needed to evolve as well. APIs have become a product, therefore all the typical team members and methodologies have been employed to make that product successful.The (...)

#open-api #programming #web-development

From #wordpress to JAMstack : How to make your website 10x faster
▻https://hackernoon.com/from-wordpress-to-jamstack-how-to-make-your-website-10x-faster-e363abc46

Performance matters. If you are familiar with JAMstack, the movement encourages avoiding server-side rendering completely in favor of pre-build, purely static HTML pages. By serving only JavaScript, APIs, and Markdown (JAM) over a CDN, a website’s performance is dramatically increased, making for a much better user experience.If you have an existing WordPress website, you may be familiar with slow page load. This can be due to server-side processes that occur prior to even getting to the HTML. If you are looking to make the switch to a better experience for your users, it might be time to switch to a JAMstack website. And making the switch may be easier than you think.In this tutorial we’re going to import existing WordPress content into a JAMstack website, deploy to Netlify, then (...)

#web-development #cms #wordpress-web-development #api

Should You Use a Workflow Automation Tool or a Unified #api?
▻https://hackernoon.com/need-integrations-when-to-use-a-workflow-automation-tool-vs-a-unified-ap

This article was originally published here.Productivity is the name of the gameIf your team is building a product with integrations to boost your users’ productivity, how do you know what’s the best tool to use? Every #integration tool website claims to help you increase your end-users’ efficiency, but they offer little clarity regarding exactly what makes them the best tool for the job.In this post, we’ll explain when you would want to direct users to a third-party automation service such as Zapier or Workato, and when you would instead (or in addition!) build the integration into your app using Kloudless’ Unified APIs.When to use workflow automation servicesLet’s say you have a product aimed at increasing sales team productivity and your product has its own API. You can make it easier for (...)

#software-engineer #web-development #programming

Consider #grpc for Mobile APIs
▻https://hackernoon.com/consider-grpc-for-mobile-apis-2f0a8552ec23?source=rss----3a8144eabfe3---

https://cdn-images-1.medium.com/max/867/0*wECuF3nPeZXUEoVK.png

Evaluating gRPC Request-Response, Authentication, and StreaminggRPC is an open source remote procedure call (RPC) framework that runs across many different client and server platforms. It commonly uses protocol buffers (protobufs) to efficiently serialize structured data for communication, and it is used extensively in distributed and microservice-based systems.According to grpc.io, gRPC and Protobuf provide an easy way to precisely define a service and auto generate reliable client libraries for iOS, Android, and the servers providing the back end. The clients can take advantage of advanced streaming and connection features which help save bandwidth, do more over fewer TCP connections and save CPU usage and battery life.Sounds promising, we’ll run through a few beginning scenarios to (...)

#api #android-app-development #grpc-for-mobile-apis #mobile-app-development

Whether You Love or Hate Facebook, #graphql is Awesome
▻https://hackernoon.com/whether-you-love-or-hate-facebook-graphql-is-awesome-bbf67f33fe10?source

https://cdn-images-1.medium.com/proxy/1*8gJ4njeOI4lYObngZvBgCA.png

Let’s time travel a bit. Imagine you’re a developer back in the mid-2000s. You’re working on building a web application, and you are solving for the desktop Internet browser because it’s the only platform available. It’s easier to keep your server and client codebase integrated and let the framework abstract away the client-server communication.Fast forward a few years — browsers have now matured to support HTML5 and JavaScript, permitting richer client-side capabilities. At this point in time, the front-end developer emerged. Although developers began to diverge in their roles and responsibilities to keep up with evolving technological advancements, monolithic frameworks such as PHP, Ruby-on-Rails, and ASP.NET continued to dominate the developer ecosphere thanks to their simplicity, (...)

#api #mobile-app-development #front-end-development #low-code

Founder Interviews: Jed Ng of #rakuten RapidAPI
▻https://hackernoon.com/founder-interviews-jed-ng-of-rakuten-rapidapi-4adb225619f8?source=rss---

https://cdn-images-1.medium.com/proxy/1*cIxoUfl7ZjRAObOjlpCe_A.jpeg

Learn how Jed Ng and his team built the world’s largest #api marketplace, scaling Rakuten RapidAPI to over 8,000 APIs and 500,000 developers.Davis Baer: What’s your background, and what are you working on?My name is Jed Ng. I work on building and scaling new tech ventures. I’m especially attracted to the ‘0–1’ of creating new market segments. I also work by bridging corporate/startup partnerships.I’m currently the Head of Rakuten RapidAPI- a venture born from a deal that brought A16Z-backed RapidAPI and $10BN+ eCommerce giant Rakuten together.Rakuten RapidAPI is an API Marketplace. Our mission is to empower software developers to build game-changing applications through web APIs. We’re building a single platform to unify the fragmented Developer experience (DX) when it comes to web APIs. This (...)

#rakuten-rapidapi #rakuten-api #davis-baer

TouchEvent | MDN
▻https://developer.mozilla.org/en-US/docs/Web/API/TouchEvent

La documentation de l’API TouchEvent pour gérer les évènements de type « touch » dans une application web

#TouchEvent #html5 #api #mdn #documentation

Build and Deploy an #api with Standard Library and Node.js in 6 Easy Steps
▻https://hackernoon.com/build-deploy-and-publish-an-api-using-code-xyz-and-node-js-in-6-steps-8a

https://cdn-images-1.medium.com/max/287/1*PjVW4qAsbtCmvqOlIRRBTA.jpeg

APIs, the building blocks of software, run our world. They’re how software systems communicate with each other, and how we as people communicate with software. Knowing how to build an API is not only a crucial skill for a software developer, but a foundational part of general coding literacy — a skill that can help anyone in their career.In this tutorial, you’ll learn how to build an API directly from your web browser — no other tools required — using #code on Standard Library, the online API editor. Whether you’re new to software development or a veteran looking for faster ways to ship code, I’ll demonstrate how quickly you can build a working API with Code on Standard Library. We’ll use Code on Standard Library to build a fully functional SMS service that connects AscenDB’s Peaks API for (...)

#programming #serverless #nodejs

Des abeilles et des hommes
Laure Cailloce, Le Journal du CNRS, le 21 janvier 2019
▻https://lejournal.cnrs.fr/articles/des-abeilles-et-des-hommes

https://lejournal.cnrs.fr/sites/default/files/styles/visuel_principal/public/assets/images/1174567_72dpi.jpg?itok=E49oZvc7

Difficile en revanche d’affirmer avec certitude où et quand les hommes ont commencé à pratiquer l’apiculture au moyen de ruches domestiques, en plus de la collecte du miel issu des ruches sauvages… « À l’âge du bronze, soit à partir de 2000 avant notre ère en Europe de l’Ouest, on va fabriquer énormément d’objets en bronze avec la technique dite à la “cire perdue”, qui nécessite une grande quantité de cire. Cette intensification a probablement nécessité l’exploitation de ruches domestiques », avance Martine Regert. C’est en tout cas en Égypte que l’on retrouve, dès 2400 avant notre ère, les premières représentations de ruches domestiques, dans le temple solaire d’Abou Gorab. Les ruches qui y sont figurées sont des cylindres en céramique, une technique très employée en Égypte, puis sur tout le pourtour méditerranéen : en Grèce, dès le Ve siècle avant notre ère, ou encore en Espagne dès le 3e siècle.

#CNRS #Science #Histoire #Préhistoire #Moyen_Age #abeilles #ruches #apiculture #miel

Ajouter à la compilation #archéologie :
►https://seenthis.net/messages/633249

Sangue indígena : nenhuma gota a mais
▻https://www.cetri.be/Sangue-indigena-nenhuma-gota-a

Trinta anos depois de aprovada a Constituição Federal de 1988, que trouxe o respeito à identidade cultural dos povos indígenas e ao direito sobre as terras que tradicionalmente ocupam, nós continuamos sofrendo ameaças. A mais recente, ​cometida pelo novo governo de Jair Bolsonaro, se deu com a Medida Provisória (MP) n.º 870/2019 e os decretos assinados pelo presidente para reorganizar a estrutura e as competências ministeriais que deixaram, deliberadamente, graves lacunas nos instrumentos e políticas (...)

#El_Sur_en_movimiento

/ #Indigènes, #Brésil, #APIB, Agriculture & luttes pour la terre, Le Sud en (...)

#Agriculture_&_luttes_pour_la_terre #Le_Sud_en_mouvement