Research
npm Malware Targets Telegram Bot Developers with Persistent SSH Backdoors
Malicious npm packages posing as Telegram bot libraries install SSH backdoors and exfiltrate data from Linux developer machines.
By Kush Pandya - Apr 18, 2025
You're Invited: Meet the Socket team at BSidesSF and RSAC - April 27 - May 1.RSVP →
- Maintainers
- 2
usaddress
usaddress is a Python library for parsing unstructured United States address strings into address components, using advanced NLP methods.
What this can do: Using a probabilistic model, it makes (very educated) guesses in identifying address components, even in tricky cases where rule-based parsers typically break down.
What this cannot do: It cannot identify address components with perfect accuracy, nor can it verify that a given address is correct/valid.
It also does not normalize the address. However, this library built on top of usaddress does.
Tools built with usaddress
Parserator API
A RESTful API built on top of usaddress for programmers who don't use python. Requires an API key and the first 1,000 parses are free.
Parserator Google Sheets App
Parserator: Parse and Split Addresses allows you to easily split addresses into separate columns by street, city, state, zipcode and more right in Google Sheets.
How to use the usaddress python library
- Install usaddress with pip, a tool for installing and managing python packages (beginner's guide here).
In the terminal,
pip install usaddress
- Parse some addresses!
Note that parse and tag are different methods:
import usaddress
addr='123 Main St. Suite 100 Chicago, IL'
# The parse method will split your address string into components, and label each component.
# expected output: [(u'123', 'AddressNumber'), (u'Main', 'StreetName'), (u'St.', 'StreetNamePostType'), (u'Suite', 'OccupancyType'), (u'100', 'OccupancyIdentifier'), (u'Chicago,', 'PlaceName'), (u'IL', 'StateName')]
usaddress.parse(addr)
# The tag method will try to be a little smarter
# it will merge consecutive components, strip commas, & return an address type
# expected output: (OrderedDict([('AddressNumber', u'123'), ('StreetName', u'Main'), ('StreetNamePostType', u'St.'), ('OccupancyType', u'Suite'), ('OccupancyIdentifier', u'100'), ('PlaceName', u'Chicago'), ('StateName', u'IL')]), 'Street Address')
usaddress.tag(addr)
How to use this development code (for the nerds)
usaddress uses parserator, a library for making and improving probabilistic parsers - specifically, parsers that use python-crfsuite's implementation of conditional random fields. Parserator allows you to train the usaddress parser's model (a .crfsuite settings file) on labeled training data, and provides tools for adding new labeled training data.
Building & testing the code in this repo
To build a development version of usaddress on your machine, run the following code in your command line:
git clone https://github.com/datamade/usaddress.git
cd usaddress
pip install -e ."[dev]"
Then run the testing suite to confirm that everything is working properly:
pytest
Having trouble building the code? Open an issue and we'd be glad to help you troubleshoot.
Adding new training data
If usaddress is consistently failing on particular address patterns, you can adjust the parser's behavior by adding new training data to the model. Follow our guide in the training directory, and be sure to make a pull request so that we can incorporate your contribution into our next release!
Important links
- Web Interface: https://parserator.datamade.us/usaddress
- Python Package Distribution: https://pypi.python.org/pypi/usaddress
- Python Package Documentation: https://usaddress.readthedocs.io/
- API Documentation: https://parserator.datamade.us/api-docs
- Repository: https://github.com/datamade/usaddress
- Issues: https://github.com/datamade/usaddress/issues
- Blog post: http://datamade.us/blog/parsing-addresses-with-usaddress
Team
- Forest Gregg, DataMade
- Cathy Deng, DataMade
- Miroslav Batchkarov, University of Sussex
- Jean Cochrane, DataMade
Bad Parses / Bugs
Report issues in the issue tracker
If an address was parsed incorrectly, please let us know! You can either open an issue or (if you're adventurous) add new training data to improve the parser's model. When possible, please send over a few real-world examples of similar address patterns, along with some info about the source of the data - this will help us train the parser and improve its performance.
If something in the library is not behaving intuitively, it is a bug, and should be reported.
Note on Patches/Pull Requests
- Fork the project.
- Make your feature addition or bug fix.
- Send us a pull request. Bonus points for topic branches!
Copyright
Copyright (c) 2025 Atlanta Journal Constitution. Released under the MIT License.
FAQs
Parse US addresses using conditional random fields
We found that usaddress demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Security News
Python Tools Are Quickly Adopting the New pylock.toml Standard
pip, PDM, pip-audit, and the packaging library are already adding support for Python’s new lock file format.
By Sarah Gooding - Apr 18, 2025
Product
Go Support Is Now Generally Available
Socket's Go support is now generally available, bringing automatic scanning and deep code analysis to all users with Go projects.
By Peter van der Zee, Ryan Eberhardt - Apr 17, 2025