Risk
6/21/2010
05:06 PM
Connect Directly
LinkedIn
Twitter
Google+
RSS
E-Mail
50%
50%

Google Introduces Command-Line Tool

A handful of Google services like Blogger and YouTube now accept a limited set of command-line instructions.

Having previously referred to its search technology as a "command-line interface to the world," Google has decided to implement an actual command-line tool for several of its services.

On Friday, Google announced the availability of GoogleCL, open-source software for Linux, Mac, and Windows that allows users to perform sophisticated tasks on a handful of Google sites.




Image Gallery: Top 10 Google Videos
(click for larger image and for full photo gallery)

"GoogleCL is a command-line utility that provides access to various Google services," explain Google engineer Jason Holt and former Google intern Tom Miller in a blog post. "It streamlines tasks such as posting to a Blogger blog, adding events to Calendar, or editing documents on Google Docs."

While Google provides instructions for installing GoogleCL on Linux, it only points to online posts by third-parties that describe how to install the software on Mac and Windows. Mac installation is made easier if the user has already installed software like MacPorts or homebrew.

The open source project Wiki indicates that easier Mac and Windows installation may available in the future.

GoogleCL is a Python application that uses Python gdata libraries to make Google Data API calls from the command line.

It currently provides access to the following services, arranged in order of implementation completeness: Picasa, Docs, YouTube, Blogger, Calendar, and Contacts.

Users can employ GoogleCL to do things like list, delete, and create Blogger posts, Picasa albums and images, or open Google Docs in an editor like vim.

There are other open source projects -- goofs and Goose, for example -- that aim to provide similar functionality for Google Calendar and Google Search. At some point, these projects may be merged with GoogleCL.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-0485
Published: 2014-09-02
S3QL 1.18.1 and earlier uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized object in (1) common.py or (2) local.py in backends/.

CVE-2014-3861
Published: 2014-09-02
Cross-site scripting (XSS) vulnerability in CDA.xsl in HL7 C-CDA 1.1 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted reference element within a nonXMLBody element.

CVE-2014-3862
Published: 2014-09-02
CDA.xsl in HL7 C-CDA 1.1 and earlier allows remote attackers to discover potentially sensitive URLs via a crafted reference element that triggers creation of an IMG element with an arbitrary URL in its SRC attribute, leading to information disclosure in a Referer log.

CVE-2014-5076
Published: 2014-09-02
The La Banque Postale application before 3.2.6 for Android does not prevent the launching of an activity by a component of another application, which allows attackers to obtain sensitive cached banking information via crafted intents, as demonstrated by the drozer framework.

CVE-2014-5136
Published: 2014-09-02
Cross-site scripting (XSS) vulnerability in Innovative Interfaces Sierra Library Services Platform 1.2_3 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
This episode of Dark Reading Radio looks at infosec security from the big enterprise POV with interviews featuring Ron Plesco, Cyber Investigations, Intelligence & Analytics at KPMG; and Chris Inglis & Chris Bell of Securonix.