Abstract Nonsense

Open uBanking

In Australia, we have the Consumer Data Right, a government mandated interoperability standard for the Banking (and now Energy) sector.

Also known as Open Banking, the idea is to ensure that banks expose APIs that allow safe access to your transactions history and account data without having to rely on hacky methods like screen scraping1.

Unfortunately, due to how the standard is enforced, it’s pretty tough to get access to your own transactions without going through an “approved data broker” that charges a premium for it (like Basiq), or a free app with limited export support like Frollo.

Well, if you’re a Ubank customer, it appears some genius has reverse-engineered the internal Ubank API from examining the API requests the frontend makes, and has exposed it as a Python-consumable API with Passkey authentication support. Genius.

As an aside, the API mentions Python “descriptors”, which I’d not heard of, but seems like an intriguing functionality worth exploring…


  1. A big player in this space is Yodlee: you provide your bank login password, and they scrape your transactions data on some interval. For obvious reasons, this breaches most banks’ T&Cs. ↩︎