Skip to main content

JupyterLab Security Utilities

Project description

jupysec

logo

JupyterLab Security Utilities

Security utilities for Jupyter environments. This set of rules and JupyerLab extension evaluates the security posture of the environment by comparing configuration values with best practices.

Function

demo

Run the extension to generate an HTML report of the security configuration of your Jupyter instance and other Jupyter instances on your host.

Configurations will be compared against these rules.

These rules currently evaluate:

  • Whether there are any executables in your ipython startup directories
  • What lines of your configuration are nonstandard with known malicious uses
  • Whether your servers require tokens for authentication
  • Whether your server and client are communicating over HTTPS
  • Whether you are serving Jupyter to a broader domain than just localhost
  • If silent commands have been run against your kernels

Some of these categories may have false-positives depending on your environment and use-case. However, users should monitor their environments and be aware of their security posture and any changes.

Matches against the rules are referred to as "Findings" and displayed in the Report Card.

report card

Requirements

  • JupyterLab >= 3.0

Getting Started

To install the rules in cli mode, execute:

pip install jupysec

Then in your python environment:

from jupysec.rules import Rules

Rules().get_findings()

Or install the JupyterLab extension with

pip install jupysec[jupyterlab]

After starting jupyterlab, your launcher window should now have a "Security" section with a widget for generating your findings. This will launch and index page with a list of all findings, color-coded by category. Click into findings for more details.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distributions

No source distribution files available for this release.See tutorial on generating distribution archives.

Built Distribution

jupysec_extension-0.1.3-py3-none-any.whl (74.5 kB view details)

Uploaded Python 3

File details

Details for the file jupysec_extension-0.1.3-py3-none-any.whl.

File metadata

File hashes

Hashes for jupysec_extension-0.1.3-py3-none-any.whl
Algorithm Hash digest
SHA256 6ac90617ef6b456d44259539e4bec859fe4595079d998f10361490a2d3fc113c
MD5 e8767be8dfa7a337175677b61294f67e
BLAKE2b-256 c128919082f6f4853c7866a5b5104bae740a1f942a2d79c6757a1fa4b43abe3e

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page