Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
RDFLib is a Python library for working with RDF, a simple yet powerful language for representing information.
RDFLib is a pure Python package for working with RDF. RDFLib contains most things you need to work with RDF, including:
The RDFlib community maintains many RDF-related Python code repositories with different purposes. For example:
Please see the list for all packages/repositories here:
Help with maintenance of all of the RDFLib family of packages is always welcome and appreciated.
main
branch in this repository is the unstable release7.1.1
current stable release, bugfixes to 7.1.07.0.0
previous stable release, supports Python 3.8.1+ only.
6.x.y
supports Python 3.7+ only. Many improvements over 5.0.0
5.x.y
supports Python 2.7 and 3.4+ and is mostly backwards compatible with 4.2.2.See https://github.com/RDFLib/rdflib/releases/ for the release details.
See https://rdflib.readthedocs.io for our documentation built from the code. Note that there are latest
, stable
and versioned builds, such as 5.0.0
, matching releases.
The stable release of RDFLib may be installed with Python's package management tool pip:
$ pip install rdflib
Some features of RDFLib require optional dependencies which may be installed using pip extras:
$ pip install rdflib[berkeleydb,networkx,html,lxml,orjson]
Alternatively manually download the package from the Python Package Index (PyPI) at https://pypi.python.org/pypi/rdflib
The current version of RDFLib is 7.1.1, see the CHANGELOG.md
file for what's new in this release.
With pip you can also install rdflib from the git repository with one of the following options:
$ pip install git+https://github.com/rdflib/rdflib@main
or
$ pip install -e git+https://github.com/rdflib/rdflib@main#egg=rdflib
or from your locally cloned repository you can install it with one of the following options:
$ poetry install # installs into a poetry-managed venv
or
$ pip install -e .
RDFLib aims to be a pythonic RDF API. RDFLib's main data object is a Graph
which is a Python collection
of RDF Subject, Predicate, Object Triples:
To create graph and load it with RDF data from DBPedia then print the results:
from rdflib import Graph
g = Graph()
g.parse('http://dbpedia.org/resource/Semantic_Web')
for s, p, o in g:
print(s, p, o)
The components of the triples are URIs (resources) or Literals (values).
URIs are grouped together by namespace, common namespaces are included in RDFLib:
from rdflib.namespace import DC, DCTERMS, DOAP, FOAF, SKOS, OWL, RDF, RDFS, VOID, XMLNS, XSD
You can use them like this:
from rdflib import Graph, URIRef, Literal
from rdflib.namespace import RDFS, XSD
g = Graph()
semweb = URIRef('http://dbpedia.org/resource/Semantic_Web')
type = g.value(semweb, RDFS.label)
Where RDFS
is the RDFS namespace, XSD
the XML Schema Datatypes namespace and g.value
returns an object of the triple-pattern given (or an arbitrary one if multiple exist).
Or like this, adding a triple to a graph g
:
g.add((
URIRef("http://example.com/person/nick"),
FOAF.givenName,
Literal("Nick", datatype=XSD.string)
))
The triple (in n-triples notation) <http://example.com/person/nick> <http://xmlns.com/foaf/0.1/givenName> "Nick"^^<http://www.w3.org/2001/XMLSchema#string> .
is created where the property FOAF.givenName
is the URI <http://xmlns.com/foaf/0.1/givenName>
and XSD.string
is the
URI <http://www.w3.org/2001/XMLSchema#string>
.
You can bind namespaces to prefixes to shorten the URIs for RDF/XML, Turtle, N3, TriG, TriX & JSON-LD serializations:
g.bind("foaf", FOAF)
g.bind("xsd", XSD)
This will allow the n-triples triple above to be serialised like this:
print(g.serialize(format="turtle"))
With these results:
PREFIX foaf: <http://xmlns.com/foaf/0.1/>
PREFIX xsd: <http://www.w3.org/2001/XMLSchema#>
<http://example.com/person/nick> foaf:givenName "Nick"^^xsd:string .
New Namespaces can also be defined:
dbpedia = Namespace('http://dbpedia.org/ontology/')
abstracts = list(x for x in g.objects(semweb, dbpedia['abstract']) if x.language=='en')
See also ./examples
The library contains parsers and serializers for RDF/XML, N3, NTriples, N-Quads, Turtle, TriX, JSON-LD, RDFa and Microdata.
The library presents a Graph interface which can be backed by any one of a number of Store implementations.
This core RDFLib package includes store implementations for in-memory storage and persistent storage on top of the Berkeley DB.
A SPARQL 1.1 implementation is included - supporting SPARQL 1.1 Queries and Update statements.
RDFLib is open source and is maintained on GitHub. RDFLib releases, current and previous are listed on PyPI
Multiple other projects are contained within the RDFlib "family", see https://github.com/RDFLib/.
Run the test suite with pytest
.
poetry install
poetry run pytest
Run the test suite and generate a HTML coverage report with pytest
and pytest-cov
.
poetry run pytest --cov
Once tests have produced HTML output of the coverage report, view it by running:
poetry run pytest --cov --cov-report term --cov-report html
python -m http.server --directory=htmlcov
RDFLib survives and grows via user contributions! Please read our contributing guide and developers guide to get started. Please consider lodging Pull Requests here:
To get a development environment consider using Gitpod or Google Cloud Shell.
You can also raise issues here:
For general "how do I..." queries, please use https://stackoverflow.com and tag your question with rdflib
.
Existing questions:
If you want to contact the rdflib maintainers, please do so via:
FAQs
RDFLib is a Python library for working with RDF, a simple yet powerful language for representing information.
We found that rdflib demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.