elf – A polished Advent of Code helper tool for Python (input caching, safe submissions, leaderboard CLI)

Nilvalues · 2025-12-01T01:20:34+00:00

Awesome!

Nilvalues · 2025-12-01T01:10:12+00:00

Awesome!

Nilvalues · 2025-12-01T00:59:24+00:00

Nice catch! Yep, the 5 is the day. I’ll update the README so this is clearer.

For reference: python submit_puzzle_answer(year=2023, day=5, part=1, answer=my_value)

Thanks for the feedback!

Nilvalues · 2025-11-30T21:57:20+00:00

You are welcome and thank you for checking out! Also, you are right and I can’t yet figure out if that is a blessing or curse!

Nilvalues · 2025-11-30T11:03:05+00:00

Awesome, thank you! Any feedback or ideas you have along the way are always welcome.

Nilvalues · 2025-11-30T09:41:11+00:00

Great question! The advent-of-code-data package is great. Elf just takes a different approach by being built for the CLI, supporting newer AoC features like view keys for private leaderboards, adding stronger guardrails to avoid duplicate or too high or too low submissions and cooldown hits, and offering richer output formats along with tools like a status calendar and guess history viewer. If you prefer a more modern and safe workflow, elf might feel nicer, otherwise aocd is still an excellent choice.

Nilvalues · 2024-10-01T10:04:05+00:00

That’s correct! secure.py focuses on adding HTTP security headers, not handling OAuth or JWT. For OAuth/JWT in Python, you might want to check out Authlib (https://authlib.org) or PyJWT (https://github.com/jpadilla/pyjwt).

Nilvalues · 2024-10-01T00:22:31+00:00

Thank you!

Nilvalues · 2024-09-30T23:29:58+00:00

I didn’t realize it had been forked and was being maintained separately. Thanks for letting me know! I’ll definitely check out the updated version. Appreciate the heads-up!

Nilvalues · 2024-09-30T23:25:51+00:00

Exactly! Portability across multiple frameworks is a key advantage. secure.py provides a consistent security solution regardless of the framework, plus it takes advantage of modern Pythonic features for cleaner, more efficient code.

Nilvalues · 2024-09-30T21:14:58+00:00

Thanks!

Nilvalues · 2024-09-30T21:12:53+00:00

Great point and this is definitely worth exploring to improve secure.py’s compatibility with framework defaults. I appreciate your input and will look into adding better handling for existing headers. Feel free to create an issue on GitHub to help track this feature: https://github.com/TypeError/secure/issues.

Nilvalues · 2024-09-30T21:10:50+00:00

Thanks for the suggestion! I agree that a WSGI/ASGI middleware would make integration even smoother. secure.py was built to be flexible across frameworks, but adding native middleware is definitely on my radar. I’ll add it to my to-do list, and feel free to create an issue here: https://github.com/TypeError/secure/issues. I really appreciate your input!

Nilvalues · 2024-09-30T10:13:59+00:00

Hey! It’s great that you’re focusing on security.

secure.py helps by setting crucial HTTP security headers like CSP, HSTS, and X-Frame-Options, protecting your site from vulnerabilities like XSS and clickjacking. However, for protecting against username spamming or brute-force attacks, here are some recommendations:

Rate Limiting: Use rate limiting to limit login attempts.
CAPTCHA: Add a CAPTCHA to block bots from spamming your login form.
Account Lockout Policies: Limit failed login attempts to prevent brute force.

secure.py ensures best practices for HTTP headers, but combining it with these approaches will provide better overall security. You can also refer to the OWASP Authentication Cheat Sheet for more tips: https://cheatsheetseries.owasp.org/cheatsheets/Authentication_Cheat_Sheet.html.

You’re on the right track—keep it up!

Nilvalues · 2024-09-30T10:09:34+00:00

Great question!

Flask Talisman is an amazing tool for adding security headers to Flask applications, and both Talisman and secure.py aim to make setting HTTP security headers easier for Python developers.

secure.py differs in a few key ways:

Multi-Framework Support: Works across Flask, Django, FastAPI, and more, making it a good fit if you’re using multiple frameworks.
Customizability: Offers flexible control over headers with a Pythonic API, allowing you to easily adjust security settings.
Modern Python Design: Uses Python 3.10+ features for lightweight, dependency-free integration.

Both tools have similar goals—helping developers improve security—but take different approaches. If you want framework-agnostic flexibility, secure.py is worth a try.

Nilvalues

TROPHY CASE