Package Health Score

45 / 100

security
No known security issues
popularity
Limited
maintenance
Inactive
community
Limited

Popularity

Limited

GitHub Stars: 0
Forks: 0
Contributors: 2

Direct Usage Popularity

Based on project statistics from the GitHub repository for the PyPI package edrn.sync, we found that it has been starred ? times.

Security

No known security issues

Security and license risk for latest version

Release Date: Jul 23, 2019
Direct Vulnerabilities: 0
C
0
H
0
M
0
L
Indirect Vulnerabilities: 0
C
0
H
0
M
0
L
License Risk: 0
H
0
M
0
L

All security vulnerabilities belong to production dependencies of direct and indirect packages.

License

Copyright 2008-2019 by the California Institute of Technology. ALL RIGHTS RESERVED. The Software is owned by Caltech/JPL and is protected by United States copyright laws and applicable international treaties and/or conventions. The United States Government may have prior rights to use some or all of the Software as determined under applicable contracts and license agreements with Caltech/JPL. This software was developed at the Jet Propulsion Laboratory, an operating division of the California Institute of Technology and is not available for use by any person, organization, or other entity without prior, specific written permission.

Security Policy

We found a way for you to contribute to the project! Looks like edrn.sync is missing a security policy.

You can connect your project's repository to Snyk to stay up to date on security alerts and receive automatic fix pull requests.

Keep your project free of vulnerabilities with Snyk

Maintenance

Inactive

archived

Commit Frequency

No Recent Commits

Open Issues: 0
Open PR: 0
Last Release: 5 years ago
Last Commit: 2 years ago

Further analysis of the maintenance status of edrn.sync based on released PyPI versions cadence, the repository activity, and other data points determined that its maintenance is Inactive.

An important project maintenance signal to consider for edrn.sync is that it hasn't seen any new versions released to PyPI in the past 12 months, and could be considered as a discontinued project, or that which receives low attention from its maintainers.

In the past month we didn't find any pull request activity or change in issues status has been detected for the GitHub repository.

Community

Limited

Readme: Yes
Contributing.md: No
Code of Conduct: Yes
Contributors: 2
Funding: No

This project has seen only 10 or less contributors.

Embed Package Health Score Badge

Keep your project healthy

Check your requirements.txt

Ensure all the packages you're using are healthy and well-maintained

Snyk Vulnerability Scanner

Get health score & security insights directly in your IDE

Package

Python Versions Compatibility: Unspecified

Age: 9 years
Latest Release: 5 years ago
Dependencies: N/A
Versions: 2
Maintainers: 2
Wheels: No

Readme

edrn.sync

EDRN Sync provides an API for slurping up DMCC RDF representing EDRN users and groups and registering those users into our EDRN IC LDAP server.

Installation

This document tells you how to install edrn.sync.

Quick Instructions

Run:

pip install edrn.sync

What? You don't have pip? You're seriously still using easy_install? Sigh:

easy_install edrn.sync

That's it. (Of course, you might want to put it into a buildout or a virtualenv).

Full Instructions

edrn.sync requires the Python programming language. We recommend version 2.4 or later. As of this writing, 2.7 is the latest stable version. If Python is not yet installed on your system, you can find binary and and source distributions from the Python website.

To test if a correct version of Python is available on your system, run:

python -V

You should see output similar to:

Python 2.7

indicating the version of Python installed. edrn.sync also requires Agile OODT. OODT is Object Oriented Data Technology, a framework for metadata and data grids. Agile OODT is a Python version of OODT that supports higher performance and easier integration than the Java version.

By far the easiest, recommended, and encouraged way to install edrn.sync is to use pip. If your Python installation has pip available to it (and all virtualenvs do), then this one command is all you need to run in order to download, build, install, and generate command-line tools all in one go:

pip install edrn.sync

That will also download and install all dependencies, including Agile OODT.

Executables

The commands dmccsync and dmccgroupsync will be generated and placed with your standard installation directory for Python commands. Usually, this is the same location as the python executable itself.

Issues and Questions

To report any problems with or ask for help about edrn.sync, visit our contact web page.

Using EDRN Sync Services

Installing the EDRN Sync Services package makes available the following commands on your computer:

dmccsync command
The dmccsync command lets you slurp up a DMCC RDF file containing users that need to be entered into EDRN IC LDAP.

dmccgroupsync command
Takes a DMCC RDF users file and a sites file and imports the associated PI groups and collaborative groups into the EDRN IC LDAPS server.

secureoldpasswords command
Goes through all existing LDAP users and tests if they're using the old, insecure default password and changes those passwords to something randomized.

Changelog

1.0.5 - Security

This release addresses a vulnerability created by weak default passwords sync'd from the DMCC user list. It generates more secure random passwords for new users and also provides a utility for detecting old weak passwords and changing them to something randomized.

1.0.4 - Packaging

This release updates the package to be compatible with PEP-470 and updates zc.buildout & setuptools compatibility.

1.0.3 - Holding Onto Heather's Changes

This release addresses the following issue:

CA-1022 - Preserve people manually added to groups

1.0.2 - Where's My Chair?

This release addresses the following issues:

CA-1020 - dmccgroupsync script ignores chair, cochair, consultant; it adds only "member" to collaborative groups

1.0.1 - Fixed URL

This release fixes the download URL of the package.

1.0.0 - All Official-Like

This release marks an official release of edrn.sync for use with the EDRN Directory Service.

0.0.1 - Kumbaya

This release adds group creation programs and APIs including the dmccgroupsync script which implements Heather Kincaid's algorithm for adding groups and syncing them based on the DMCC RDF. For more information see .

For the issue tracker, see .

0.0.0 - Initial

This is an initial release of EDRN (EDRN) Sync Services supporting minimal dmccsync functionality.

FAQs

What is edrn.sync?

EDRN Sync Services. Visit Snyk Advisor to see a full health score report for edrn.sync, including popularity, security, maintenance & community analysis.

Is edrn.sync popular?

The python package edrn.sync receives a total of 17 weekly downloads. As such, edrn.sync popularity was classified as limited. Visit the popularity section on Snyk Advisor to see the full health analysis.

Is edrn.sync well maintained?

We found indications that edrn.sync is an Inactive project. See the full package health analysis to learn more about the package maintenance status.

Is edrn.sync safe to use?

The python package edrn.sync was scanned for known vulnerabilities and missing license, and no issues were found. Thus the package was deemed as safe to use. See the full health analysis review.

Last updated on 10 October-2024, at 04:49 (UTC).

Build a secure application checklist

Select a recommended open source package

Minimize your risk by selecting secure & well maintained open source packages

DONE

Scan your app for vulnerabilities

Scan your application to find vulnerabilities in your: source code, open source dependencies, containers and configuration files

SCAN NOW

Fix identified vulnerabilities

Easily fix your code by leveraging automatically generated PRs

AUTO FIX

Monitor for new issues

New vulnerabilities are discovered every day. Get notified if your application is affected

MONITOR APP