Metadata-Version: 2.4
Name: pylotte
Version: 0.3
Summary: Package for signing and verifying pickle files
Project-URL: Documentation, https://github.com/alpamayo-solutions/pylotte#readme
Project-URL: Issues, https://github.com/alpamayo-solutions/pylotte/issues
Project-URL: Source, https://github.com/alpamayo-solutions/pylotte
Author-email: Alpamayo <info@alpamayo-solutions.com>
License-Expression: MIT
License-File: LICENSE.txt
Classifier: Development Status :: 4 - Beta
Classifier: Programming Language :: Python
Classifier: Programming Language :: Python :: 3.9
Classifier: Programming Language :: Python :: 3.10
Classifier: Programming Language :: Python :: 3.11
Classifier: Programming Language :: Python :: 3.12
Requires-Python: >=3.9
Requires-Dist: cryptography
Provides-Extra: dev
Requires-Dist: pytest; extra == 'dev'
Requires-Dist: ruff; extra == 'dev'
Description-Content-Type: text/markdown

# pylotte

**Secure Pickle Serialization with RSA Signatures**

`pylotte` is a lightweight Python utility that allows you to **securely serialize Python objects with RSA digital signatures**. It ensures the **integrity** and **authenticity** of your data by cryptographically signing serialized files and verifying them before loading.

---

## ✨ Features

- 🔐 Sign serialized files using an RSA **private key**
- ✅ Verify signatures with the corresponding **public key**
- 🛡️ Prevents tampering and ensures data authenticity
- 📦 Simple and minimal interface
- 🔄 Pluggable serializer: use `pickle`, `dill`, `cloudpickle`, or any `dump`/`load` API

---

## 📦 Installation

Install directly from PyPI:

```bash
# Basic installation with pickle support
pip install pylotte

# With dill support for advanced serialization
pip install pylotte[dill]
```

---

## 🛠 Usage

### Basic Usage with Pickle

```python
from pylotte.signed_pickle import SignedPickle

# Initialize with RSA key paths
signer = SignedPickle(public_key_path="public.pem", private_key_path="private.pem")

# Data to serialize
data = {"user": "alice", "role": "admin"}

# Securely dump and sign the pickle file
signer.dump_and_sign(data, "data.pkl", "data.sig")

# Load and verify the signed pickle file
loader = SignedPickle(public_key_path="public.pem")
data_loaded = loader.safe_load("data.pkl", "data.sig")
```

### Advanced Usage with a Custom Serializer

```python
from pylotte.signed_pickle import SignedPickle
import cloudpickle  # or dill, or any module with dump/load

signer = SignedPickle(
    public_key_path="public.pem",
    private_key_path="private.pem",
    serializer=cloudpickle,
)

data = {
    "name": "bob",
    "process": lambda x: x * 2,
    "nested": {"func": lambda y: y + 1},
}

signer.dump_and_sign(data, "data.pkl", "data.sig")

loader = SignedPickle(public_key_path="public.pem", serializer=cloudpickle)
data_loaded = loader.safe_load("data.pkl", "data.sig")

result = data_loaded["process"](5)  # Returns 10
```

### Using a Custom Serializer (e.g., cloudpickle)

```python
from pylotte.signed_pickle import SignedPickle
import cloudpickle

# Pass any object that provides dump/load
signer = SignedPickle(
    public_key_path="public.pem",
    private_key_path="private.pem",
    serializer=cloudpickle,
)

data = {"callable": lambda x: x + 3}
signer.dump_and_sign(data, "data.pkl", "data.sig")

loader = SignedPickle(public_key_path="public.pem", serializer=cloudpickle)
loaded = loader.safe_load("data.pkl", "data.sig")
```

---

## 🔐 How It Works

- `dump_and_sign()`:

  - Serializes your data using the provided serializer (defaults to pickle) and saves it to a file.
  - Signs the file contents using an RSA private key.
  - Stores the signature in a separate `.sig` file.

- `safe_load()`:
  - Reads the serialized file and its signature.
  - Verifies the signature using the RSA public key.
  - If valid, loads and returns the original data.

---

## 🔧 Requirements

- Python 3.9+
- [`cryptography`](https://pypi.org/project/cryptography/)

---

## 📄 License

This project is licensed under the **MIT License**.

---

## 🌐 Links

- 📚 Documentation: [GitHub Repository](https://github.com/alpamayo-solutions/pylotte)
- 🐛 Issue Tracker: [Report Bugs](https://github.com/alpamayo-solutions/pylotte/issues)
- 📦 PyPI: [pylotte on PyPI](https://pypi.org/project/pylotte)

---

## 👤 Author

Developed by [Alpamayo Solutions](mailto:info@alpamayo-solutions.com)
