tracking of upstream project metadata
Project description
Upstream Ontologist
The upstream ontologist provides a common interface for finding metadata about upstream software projects.
It will gather information from any sources available, prioritize data that it has higher confidence in as well as report the confidence for each of the bits of metadata.
The ontologist originated in Debian and the currently reported metadata fields are loosely based on DEP-12, but it is meant to be distribution-agnostic.
Provided Fields
Standard fields:
Homepage
: homepage URLName
: human name of the upstream projectContact
: contact address of some sort of the upstream (e-mail, mailing list URL)Repository
: VCS URLRepository-Browse
: Web URL for viewing the VCSBug-Database
: Bug database URL (for web viewing, generally)Bug-Submit
: URL to use to submit new bugs (either on the web or an e-mail address)Screenshots
: List of URLs with screenshotsArchive
: Archive used - e.g. SourceForgeSecurity-Contact
: e-mail or URL with instructions for reporting security issuesDocumentation
: Link to documentation on the web
Extensions for upstream-ontologist, not defined in DEP-12:
X-SourceForge-Project
: sourceforge project nameX-Wiki
: Wiki URLX-Summary
: one-line description of the projectX-Description
: longer description of the projectX-License
: Single line license (e.g. "GPL 2.0")X-Copyright
: List of copyright holdersX-Version
: Current upstream versionX-Security-MD
: URL to markdown file with security policyX-Author
: List of people who contributed to the projectX-Maintainer
: The maintainer of the project
Supported Data Sources
At the moment, the ontologist can read metadata from the following upstream data sources:
- Python package metadata (PKG-INFO, setup.py, setup.cfg, pyproject.timl)
- package.json
- composer.json
- package.xml
- Perl package metadata (dist.ini, META.json, META.yml, Makefile.PL)
- Perl POD files
- GNU configure files
- R DESCRIPTION files
- Rust Cargo.toml
- Maven pom.xml
- metainfo.xml
- .git/config
- SECURITY.md
- DOAP
- Haskell cabal files
- go.mod
- ruby gemspec files
- nuspec files
- OPAM files
- Debian packaging metadata (debian/watch, debian/control, debian/rules, debian/get-orig-source.sh, debian/copyright, debian/patches)
- Dart's pubspec.yaml
- meson.build
It will also scan README and INSTALL for possible upstream repository URLs (and will attempt to verify that those match the local repository).
In addition to local files, it can also consult external directories using their APIs:
Example Usage
The easiest way to use the upstream ontologist is by invoking the
guess-upstream-metadata
command in a software project:
$ guess-upstream-metadata ~/src/dulwich
X-Security-MD: https://github.com/dulwich/dulwich/tree/HEAD/SECURITY.md
Name: dulwich
X-Version: 0.20.15
Bug-Database: https://github.com/dulwich/dulwich/issues
Repository: https://www.dulwich.io/code/
X-Summary: Python Git Library
Bug-Submit: https://github.com/dulwich/dulwich/issues/new
Alternatively, there is a Python API. There are also autocodemeta
and
autodoap
commands that can generate output in the
codemeta and
DOAP formats, respectively.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Hashes for upstream-ontologist-0.1.33.tar.gz
Algorithm | Hash digest | |
---|---|---|
SHA256 | da2f241c76f9bf58cd686d491b0856174c07112fec4fb41fde722ad751c5b715 |
|
MD5 | 64996c9bd05d88609362870022f8bba5 |
|
BLAKE2b-256 | 1cecd4828d2bef5176f75d0f5b6f105d7b72cd52a545a4904fa31f9712b5f5f6 |
Hashes for upstream_ontologist-0.1.33-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 17e92f8646a76c64cf6585f74bd3ae7190e92c59510ebbb1d9d6680b05f80856 |
|
MD5 | 39c53c05dff8f068a81f97f6bae79a3d |
|
BLAKE2b-256 | fa3858138f47fbf315c553649ce3bbe0b007d9c5c4a3db21c1cbfa2d5431368b |