Skip to main content

Public, versioned repository of pre-configured, tested NIRS pipelines: store, validate, secure and serve nirs4all + dag-ml pipelines by name, across languages.

Project description

nirs4all-repository

nirs4all-repository

Status: 0.1.0 beta. The storage envelope and the cross-language index.json contract are frozen at schema_version: 1. Catalogue website: repository.nirs4all.org.

The public, versioned repository of pre-configured, tested nirs4all pipelines — ready-to-run recipes (preprocessing → model → evaluation) stored with provenance, validated against reference datasets, and loadable by name instead of rebuilt by hand. It is the remote, name-addressable layer the ecosystem otherwise lacks.

Part of the nirs4all ecosystem. See also the public open-source NIRS tools hub for the file readers, datasets, methods engine, browser modelling app, reproducible pipeline repository, papers archive, benchmarks, and release cockpit.

What it does

  • Store pipelines — nirs4all recipes or dag-ml recipes, with or without fitted artifacts — as portable, content-addressed bundles with full provenance.
  • Validate them statically (schema, structure, checksums) and functionally (re-run against a pinned reference dataset and compare to recorded metrics).
  • Secure them — recipe class allow-listing, pickle-opcode scanning, SHA-256 tamper-evidence, trust tiers, and a publication gate.
  • Serve them by name through a language-agnostic static contract (a canonical-JSON index.json + content-addressed bundles over HTTPS) consumed by the Python reference client and thin clients in any language.
  • Publish a catalogue website listing every pipeline, its metadata, provenance, and validation status.

Install & use

pip install nirs4all-repository
import nirs4all_repository as n4r

n4r.list(framework="nirs4all")        # browse the catalogue
pipe = n4r.get("snv_savgol_pls")      # resolve by name (local → bundled → remote, sha256-verified)
config = pipe.to_nirs4all()           # hand to nirs4all.run() / predict()

For provider/core clients that want explicit preset/pipeline names, the package also exports get_pipeline_list(), get_pipeline(), and get_bundle() as stable provider-facing helpers over the same read-only catalogue semantics.

The n4a-repository CLI is the maintenance interface (list / show / get / add / validate / scan / build / site / evaluate / publish).

How a pipeline is stored

Each pipeline is a directory pipelines/<id>/:

File Role
descriptor.yaml the schema-validated descriptor (the unit of catalogue membership)
pipeline.json the recipe — a nirs4all config or a dag-ml DSL
card.md a human-readable card (rendered into the site)
manifest.json generated content manifest (per-file SHA-256)
ro-crate-metadata.json generated RO-Crate provenance + tamper-evidence manifest
artifacts/<sha256> content-addressed fitted artifact blobs (fitted pipelines only)

The generated catalog/index.json is the single cross-language registry, served at /data/index.json and bundled into the wheel for offline resolution. The envelope is dag-ml's Research-Provenance-Package shape, so one format serves both ecosystems.

See docs/DESIGN.md, docs/SPECIFICATION.md, and docs/ROADMAP.md. Security model: SECURITY.md.

Relationship to the rest of the ecosystem

  • Recipes are expressed against the public nirs4all pipeline surface (or the dag-ml DSL) and executed by their engines; this repo does not re-implement NIRS, IO, or ML logic.
  • They are scored and ranked in nirs4all-benchmarks; this repo is the source of the recipes, the benchmarks repo is where they are run and ranked.
  • Reference datasets come from nirs4all-datasets (by name / DOI); never re-hosted here.

Development (green gate)

ruff check .
mypy src/nirs4all_repository
n4a-repository validate --all
n4a-repository build && git diff --exit-code   # generated artifacts are current
pytest -m "not network and not evaluate"

Release hygiene

GitHub Releases are expected to carry the same wheel and sdist built by the release workflow, so clients that fall back to GitHub Release assets do not land on source-only tags. On release.published, .github/workflows/publish.yml builds dist/, uploads those files to the GitHub Release, and verifies that a *.whl and *.tar.gz are attached. Manual dry-runs remain build-only.

To audit an existing release without publishing or touching PyPI:

python scripts/check_release_assets.py --repo GBeurier/nirs4all-repository
python scripts/check_release_assets.py --repo GBeurier/nirs4all-repository --tag v0.1.8

The check uses GH_TOKEN/GITHUB_TOKEN or local gh credentials when available, to avoid anonymous GitHub API rate limits.

License

Pipeline code / configurations are dual-licensed open-source — CeCILL-2.1 OR AGPL-3.0-or-later. The copyleft terms permit commercial use; an optional commercial license is available for proprietary/closed-source use that cannot meet the copyleft obligations (contact nirs4all-admin@cirad.fr). Bundled content (cards, metadata, the website) is CC-BY-4.0. See LICENSING.md and LICENSES/.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

nirs4all_repository-0.1.8.tar.gz (124.7 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

nirs4all_repository-0.1.8-py3-none-any.whl (111.9 kB view details)

Uploaded Python 3

File details

Details for the file nirs4all_repository-0.1.8.tar.gz.

File metadata

  • Download URL: nirs4all_repository-0.1.8.tar.gz
  • Upload date:
  • Size: 124.7 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.13

File hashes

Hashes for nirs4all_repository-0.1.8.tar.gz
Algorithm Hash digest
SHA256 3c285e222ca4f21e9ba509264ba76e575ad61b6aae0e1d762192f91f9aaa996e
MD5 9fed230fa30acaace7f004d260ca3892
BLAKE2b-256 5c2ee49e72b5c180bc49d2f23004573567e522625878059f9c0324ce76520e76

See more details on using hashes here.

Provenance

The following attestation bundles were made for nirs4all_repository-0.1.8.tar.gz:

Publisher: publish.yml on GBeurier/nirs4all-repository

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file nirs4all_repository-0.1.8-py3-none-any.whl.

File metadata

File hashes

Hashes for nirs4all_repository-0.1.8-py3-none-any.whl
Algorithm Hash digest
SHA256 1518f09416beab317cae4d90908b6d06265f938fd866bd79f847cfc9410c32c6
MD5 0552b9f98a61bedfb2f7e26134e4d336
BLAKE2b-256 d8ccf7ce4db6444c42c85b91d698d4429401eb7a093afcf45f0b1b1a016f0ad4

See more details on using hashes here.

Provenance

The following attestation bundles were made for nirs4all_repository-0.1.8-py3-none-any.whl:

Publisher: publish.yml on GBeurier/nirs4all-repository

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page