Skip to main content

Local capture launcher + registry for GL.iNet device API profiles.

Project description

glinet-profiler

A small local web launcher that captures a GL.iNet router's API surface (read-only), sanitizes it into a shareable profile, checks whether that device + firmware is already in the registry, and lets you download it or open a prefilled submission.

Your password never leaves your machine: it goes from your browser to a local server (127.0.0.1) to your own router. Nothing is uploaded unless you deliberately submit.

Built with AI assistance. Most of this code was written by Claude — human-directed, reviewed change by change, and verified against real hardware. It's open source; read it and judge for yourself. The read-only-by-default behaviour and the sanitization are the parts to scrutinise.

Why a local launcher and not a public site? GL.iNet's RPC sends no CORS headers, so a public browser page cannot talk to your local router. The enumeration therefore runs server-side in this launcher (native Python, which is not subject to CORS), and the UI is served locally.

Quick start

Once published you'll be able to run it with no install:

uvx glinet-profiler

From a source checkout:

uv run glinet-profiler            # starts the launcher, opens your browser
uv run glinet-profiler --no-browser --port 8765

Then enter your router URL (e.g. http://192.168.8.1), username (root), and password, and click Capture. You'll get a sanitized profile, a "already-known / new" banner, and Download / Submit actions.

What's in the profile (and what isn't)

The published profile keeps only the device model + firmware and the per-method API shape (status, risk, whether the gli4py client wraps it, params, schema). It drops device identifiers (mac, sn, sn_bak) and all response values — the raw report never leaves the local capture() step.

Enumeration is strictly read-only (a built-in catalog tier, plus an optional SSH read tier if you tick the box and have SSH access).

Security

  • The launcher binds 127.0.0.1 only and guards its API with a per-run session token plus a localhost host check (so no other web page can drive it).
  • The password is used only to log into your router from the local process and is never persisted, logged, or sent anywhere remote.

How it fits with gli4py and the registry

This package is the capture launcher only. The enumeration engine lives inside it (glinet_profiler/enumerator/, originally developed in the gli4py project) — there is no runtime dependency on gli4py (deps are just aiohttp, paramiko, libpass).

  • gli4py — the typed GL.iNet Python client library. Each captured profile records, per method, whether the gli4py client already wraps it ("coverage") — a lens for Python developers.
  • glinet-registry — the public, community registry of device profiles (browse site + submission bot). The launcher fetches its manifest to tell you whether a device is already known, and Submit opens its issue form. It releases independently of this package.

Development

uv sync --all-extras --dev
uv run pytest -q
uv run ruff check . && uv run mypy src && uv run pylint $(git ls-files '*.py')

The three repos

  • glinet-profiler (this repo) — the capture launcher + enumeration engine.
  • glinet-registry — the device-profile data, browse site, and submission bot.
  • gli4py — the GL.iNet Python client library (the "coverage" lens shown in each profile).

License

GPL-3.0-or-later.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

glinet_profiler-0.1.1.tar.gz (197.8 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

glinet_profiler-0.1.1-py3-none-any.whl (46.5 kB view details)

Uploaded Python 3

File details

Details for the file glinet_profiler-0.1.1.tar.gz.

File metadata

  • Download URL: glinet_profiler-0.1.1.tar.gz
  • Upload date:
  • Size: 197.8 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.13

File hashes

Hashes for glinet_profiler-0.1.1.tar.gz
Algorithm Hash digest
SHA256 c06a5e26283b362829c90f85ac3beafdc0cfec8900b99267275171a949756748
MD5 da5f0b86fdd4938a4817f27fa11d81d6
BLAKE2b-256 2a39e0fd7df479e74ab82ee0d4abf6ffd3847f4a7552a82d3a45dc55b7660ee5

See more details on using hashes here.

Provenance

The following attestation bundles were made for glinet_profiler-0.1.1.tar.gz:

Publisher: release.yml on shauneccles/glinet-profiler

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file glinet_profiler-0.1.1-py3-none-any.whl.

File metadata

  • Download URL: glinet_profiler-0.1.1-py3-none-any.whl
  • Upload date:
  • Size: 46.5 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.13

File hashes

Hashes for glinet_profiler-0.1.1-py3-none-any.whl
Algorithm Hash digest
SHA256 34da22d1cf1858e500c5d4675202c0ab9e522074d2196d0ec160738ae27a6e65
MD5 f3689f247f2ebb14cdfa04f749ba7b85
BLAKE2b-256 9bd0e7b4089118aca10bf901a23d48ee094a9b3c7e2ac194d9793399c963873e

See more details on using hashes here.

Provenance

The following attestation bundles were made for glinet_profiler-0.1.1-py3-none-any.whl:

Publisher: release.yml on shauneccles/glinet-profiler

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page