Skip to main content

Public, versioned repository of pre-configured, tested NIRS pipelines: store, validate, secure and serve nirs4all + dag-ml pipelines by name, across languages.

Project description

nirs4all-repository

nirs4all-repository

Status: 0.1.0 beta. The storage envelope and the cross-language index.json contract are frozen at schema_version: 1. Catalogue website: repository.nirs4all.org.

The public, versioned repository of pre-configured, tested nirs4all pipelines — ready-to-run recipes (preprocessing → model → evaluation) stored with provenance, validated against reference datasets, and loadable by name instead of rebuilt by hand. It is the remote, name-addressable layer the ecosystem otherwise lacks.

Part of the nirs4all ecosystem. See also the public open-source NIRS tools hub for the file readers, datasets, methods engine, browser modelling app, reproducible pipeline repository, papers archive, benchmarks, and release cockpit.

What it does

  • Store pipelines — nirs4all recipes or dag-ml recipes, with or without fitted artifacts — as portable, content-addressed bundles with full provenance.
  • Validate them statically (schema, structure, checksums) and functionally (re-run against a pinned reference dataset and compare to recorded metrics).
  • Secure them — recipe class allow-listing, pickle-opcode scanning, SHA-256 tamper-evidence, trust tiers, and a publication gate.
  • Serve them by name through a language-agnostic static contract (a canonical-JSON index.json + content-addressed bundles over HTTPS) consumed by the Python reference client and thin clients in any language.
  • Publish a catalogue website listing every pipeline, its metadata, provenance, and validation status.

Install & use

pip install nirs4all-repository
import nirs4all_repository as n4r

n4r.list(framework="nirs4all")        # browse the catalogue
pipe = n4r.get("snv_savgol_pls")      # resolve by name (local → bundled → remote, sha256-verified)
config = pipe.to_nirs4all()           # hand to nirs4all.run() / predict()

For provider/core clients that want explicit preset/pipeline names, the package also exports get_pipeline_list() / list_pipelines(), get_pipeline(), and get_bundle() as aliases over the same read-only catalogue semantics.

The n4a-repository CLI is the maintenance interface (list / show / get / add / validate / scan / build / site / evaluate / publish).

How a pipeline is stored

Each pipeline is a directory pipelines/<id>/:

File Role
descriptor.yaml the schema-validated descriptor (the unit of catalogue membership)
pipeline.json the recipe — a nirs4all config or a dag-ml DSL
card.md a human-readable card (rendered into the site)
manifest.json generated content manifest (per-file SHA-256)
ro-crate-metadata.json generated RO-Crate provenance + tamper-evidence manifest
artifacts/<sha256> content-addressed fitted artifact blobs (fitted pipelines only)

The generated catalog/index.json is the single cross-language registry, served at /data/index.json and bundled into the wheel for offline resolution. The envelope is dag-ml's Research-Provenance-Package shape, so one format serves both ecosystems.

See docs/DESIGN.md, docs/SPECIFICATION.md, and docs/ROADMAP.md. Security model: SECURITY.md.

Relationship to the rest of the ecosystem

  • Recipes are expressed against the public nirs4all pipeline surface (or the dag-ml DSL) and executed by their engines; this repo does not re-implement NIRS, IO, or ML logic.
  • They are scored and ranked in nirs4all-benchmarks; this repo is the source of the recipes, the benchmarks repo is where they are run and ranked.
  • Reference datasets come from nirs4all-datasets (by name / DOI); never re-hosted here.

Development (green gate)

ruff check .
mypy src/nirs4all_repository
n4a-repository validate --all
n4a-repository build && git diff --exit-code   # generated artifacts are current
pytest -m "not network and not evaluate"

Release hygiene

GitHub Releases are expected to carry the same wheel and sdist built by the release workflow, so clients that fall back to GitHub Release assets do not land on source-only tags. On release.published, .github/workflows/publish.yml builds dist/, uploads those files to the GitHub Release, and verifies that a *.whl and *.tar.gz are attached. Manual dry-runs remain build-only.

To audit an existing release without publishing or touching PyPI:

python scripts/check_release_assets.py --repo GBeurier/nirs4all-repository
python scripts/check_release_assets.py --repo GBeurier/nirs4all-repository --tag v0.1.6

The check uses GH_TOKEN/GITHUB_TOKEN or local gh credentials when available, to avoid anonymous GitHub API rate limits.

License

Pipeline code / configurations are dual-licensed open-source — CeCILL-2.1 OR AGPL-3.0-or-later. The copyleft terms permit commercial use; an optional commercial license is available for proprietary/closed-source use that cannot meet the copyleft obligations (contact nirs4all-admin@cirad.fr). Bundled content (cards, metadata, the website) is CC-BY-4.0. See LICENSING.md and LICENSES/.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

nirs4all_repository-0.1.6.tar.gz (123.8 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

nirs4all_repository-0.1.6-py3-none-any.whl (111.9 kB view details)

Uploaded Python 3

File details

Details for the file nirs4all_repository-0.1.6.tar.gz.

File metadata

  • Download URL: nirs4all_repository-0.1.6.tar.gz
  • Upload date:
  • Size: 123.8 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.13

File hashes

Hashes for nirs4all_repository-0.1.6.tar.gz
Algorithm Hash digest
SHA256 4ea740fd3dcd2e227416feceba8db9781712436d16acb546be7b538d0b9dc2dd
MD5 56771b2beda296799b3c06440f668bdf
BLAKE2b-256 c391a966f9cfeb7ecb0cdf7467a458a0e2644105918d78470508935096b312c3

See more details on using hashes here.

Provenance

The following attestation bundles were made for nirs4all_repository-0.1.6.tar.gz:

Publisher: publish.yml on GBeurier/nirs4all-repository

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file nirs4all_repository-0.1.6-py3-none-any.whl.

File metadata

File hashes

Hashes for nirs4all_repository-0.1.6-py3-none-any.whl
Algorithm Hash digest
SHA256 ea57cb5823929553f00f7a855ba9b78c5b243c290f35c25f65f5873cf61fe466
MD5 3cba7da99d7921fab012a1ad242105f6
BLAKE2b-256 4871998c1867dd5c7a9e38b61ec93c63c9cbedebdf6ba27bc7e7dee6ef3047d6

See more details on using hashes here.

Provenance

The following attestation bundles were made for nirs4all_repository-0.1.6-py3-none-any.whl:

Publisher: publish.yml on GBeurier/nirs4all-repository

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page