Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
nbformat-schema
Advanced tools
nbformat
contains the reference implementation of the Jupyter Notebook format,
and Python APIs for working with notebooks.
There is also a JSON Schema for nbformat versions >= 3.
From the command line:
pip install nbformat
We use fastjsonschema
by default. To use jsonschema
instead, set the environment variable NBFORMAT_VALIDATOR
to the value jsonschema
.
This library supported Python 2.7 and Python 3.5+ for 4.x.x
releases. With Python 2's end-of-life nbformat 5.x.x
supported Python 3 only. Support for Python 3.x versions will be dropped when they are officially sunset by the python organization.
Read CONTRIBUTING.md for guidelines on how to setup a local development environment and make code changes back to nbformat.
The Jupyter Development Team is the set of all contributors to the Jupyter project. This includes all of the Jupyter subprojects.
The core team that coordinates development on GitHub can be found here: https://github.com/jupyter/.
Jupyter uses a shared copyright model. Each contributor maintains copyright over their contributions to Jupyter. But, it is important to note that these contributions are typically only changes to the repositories. Thus, the Jupyter source code, in its entirety is not the copyright of any single person or institution. Instead, it is the collective copyright of the entire Jupyter Development Team. If individual contributors want to maintain a record of what changes/contributions they have specific copyright on, they should indicate their copyright in the commit message of the change, when they commit the change to one of the Jupyter repositories.
With this in mind, the following banner should be used in any source code file to indicate the copyright and license terms:
# Copyright (c) Jupyter Development Team.
# Distributed under the terms of the Modified BSD License.
FAQs
JSON schemata for Jupyter notebook formats
We found that nbformat-schema demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 17 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.