update #170

VinciGit00 · 2024-05-07T20:24:50Z

No description provided.

Pre/beta

feat: refactoring search function

## [0.9.0-beta.2](v0.9.0-beta.1...v0.9.0-beta.2) (2024-05-05) ### Features * refactoring search function ([aeb1acb](aeb1acb)) ### Bug Fixes * bug on .toml ([f7d66f5](f7d66f5))

…ng-litellm

feat: 133 support claude3

## [0.9.0-beta.3](v0.9.0-beta.2...v0.9.0-beta.3) (2024-05-05) ### Features * add claude documentation ([5bdee55](5bdee55))

Pass common params to nodes in graph

feat: add gemini embeddings

## [0.9.0-beta.4](v0.9.0-beta.3...v0.9.0-beta.4) (2024-05-05) ### Features * add gemini embeddings ([79daa4c](79daa4c))

Implemented GraphIteratorNode and MergeAnswersNode to create multiple istances of a graph and merge the scraped content from multiple pages

fix(llm): fixed gemini api_key

## [0.9.0-beta.7](v0.9.0-beta.6...v0.9.0-beta.7) (2024-05-06) ### Bug Fixes * **llm:** fixed gemini api_key ([fd01b73](fd01b73))

… into pre/beta

## [0.9.0-beta.8](v0.9.0-beta.7...v0.9.0-beta.8) (2024-05-06) ### Features * add llava integration ([019b722](019b722))

feat: add new hugging_face models

… into pre/beta

Support for Anthropic Claude 3 models

## [0.10.0-beta.1](v0.9.0...v0.10.0-beta.1) (2024-05-06) ### Features * add claude documentation ([5bdee55](5bdee55)) * add gemini embeddings ([79daa4c](79daa4c)) * add llava integration ([019b722](019b722)) * add new hugging_face models ([d5547a4](d5547a4)) * Fix bug for gemini case when embeddings config not passed ([726de28](726de28)) * fixed custom_graphs example and robots_node ([84fcb44](84fcb44)) * multiple graph instances ([dbb614a](dbb614a)) * **node:** multiple url search in SearchGraph + fixes ([930adb3](930adb3)) * refactoring search function ([aeb1acb](aeb1acb)) ### Bug Fixes * bug on .toml ([f7d66f5](f7d66f5)) * **llm:** fixed gemini api_key ([fd01b73](fd01b73)) ### CI * **release:** 0.9.0-beta.2 [skip ci] ([5aa600c](5aa600c)) * **release:** 0.9.0-beta.3 [skip ci] ([da8c72c](da8c72c)) * **release:** 0.9.0-beta.4 [skip ci] ([8c5397f](8c5397f)) * **release:** 0.9.0-beta.5 [skip ci] ([532adb6](532adb6)) * **release:** 0.9.0-beta.6 [skip ci] ([8c0b46e](8c0b46e)) * **release:** 0.9.0-beta.7 [skip ci] ([6911e21](6911e21)) * **release:** 0.9.0-beta.8 [skip ci] ([739aaa3](739aaa3))

allignment

github-actions · 2024-05-07T20:25:05Z

Dependency Review

The following issues were found:

✅ 0 vulnerable package(s)
✅ 0 package(s) with incompatible licenses
✅ 0 package(s) with invalid SPDX license definitions
⚠️ 2 package(s) with unknown licenses.

See the Details below.

License Issues

pyproject.toml

Package	Version	License	Issue Type
beautifulsoup4	^ 4.12.3	Null	Unknown License
tqdm	^ 4.66.4	Null	Unknown License

OpenSSF Scorecard

Scorecard details

Package

Version

Score

Details

pip/beautifulsoup4

^ 4.12.3

Unknown

pip/faiss-cpu

^ 1.8.0

🟢 4.8

Details

Check	Score	Reason
Code-Review	⚠️ 1	Found 2/20 approved changesets -- score normalized to 1
Maintained	🟢 10	6 commit(s) and 8 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ 0	Project has not signed or included provenance with any releases.
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Binary-Artifacts	🟢 10	no binaries found in the repo
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Fuzzing	⚠️ 0	project is not fuzzed
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Security-Policy	⚠️ 0	security policy file not detected
Packaging	🟢 10	packaging workflow detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0

pip/free-proxy

^ 1.1.1

🟢 3.8

Details

Check	Score	Reason
Maintained	⚠️ 0	0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Code-Review	🟢 3	Found 4/13 approved changesets -- score normalized to 3
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Binary-Artifacts	🟢 10	no binaries found in the repo
Token-Permissions	⚠️ -1	No tokens found
Pinned-Dependencies	⚠️ -1	no dependencies found
Packaging	⚠️ -1	packaging workflow not detected
Dangerous-Workflow	⚠️ -1	no workflows found
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Fuzzing	⚠️ 0	project is not fuzzed
Security-Policy	⚠️ 0	security policy file not detected
Vulnerabilities	🟢 9	1 existing vulnerabilities detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0

pip/google

^ 3.0.0

🟢 3.4

Details

Check	Score	Reason
Maintained	🟢 5	5 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 5
Code-Review	⚠️ 1	Found 4/25 approved changesets -- score normalized to 1
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ 0	Project has not signed or included provenance with any releases.
Token-Permissions	⚠️ -1	No tokens found
Dangerous-Workflow	⚠️ -1	no workflows found
Binary-Artifacts	🟢 10	no binaries found in the repo
Packaging	⚠️ -1	packaging workflow not detected
Pinned-Dependencies	⚠️ -1	no dependencies found
Branch-Protection	⚠️ 0	branch protection not enabled on development/release branches
Fuzzing	⚠️ 0	project is not fuzzed
Security-Policy	⚠️ 0	security policy file not detected
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0

pip/graphviz

^ 0.20.3

🟢 5.5

Details

Check	Score	Reason
Code-Review	⚠️ 0	Found 2/30 approved changesets -- score normalized to 0
Maintained	🟢 10	22 commit(s) and 10 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Packaging	⚠️ -1	packaging workflow not detected
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Binary-Artifacts	🟢 10	no binaries found in the repo
Fuzzing	🟢 10	project is fuzzed
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Security-Policy	⚠️ 0	security policy file not detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0

pip/html2text

^ 2024.2.26

🟢 6.1

Details

Check	Score	Reason
Code-Review	🟢 6	Found 12/19 approved changesets -- score normalized to 6
Maintained	🟢 10	5 commit(s) and 8 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Packaging	⚠️ -1	packaging workflow not detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Signed-Releases	⚠️ -1	no releases found
Binary-Artifacts	🟢 10	no binaries found in the repo
Fuzzing	🟢 10	project is fuzzed
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Security-Policy	⚠️ 0	security policy file not detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0

pip/langchain

0.1.15

🟢 5

Details

Check	Score	Reason
Code-Review	🟢 4	Found 12/30 approved changesets -- score normalized to 4
Maintained	🟢 10	30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Security-Policy	🟢 10	security policy file detected
Branch-Protection	🟢 3	branch protection is not maximal on development and all release branches
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Binary-Artifacts	🟢 10	no binaries found in the repo
Fuzzing	⚠️ 0	project is not fuzzed
Packaging	🟢 10	packaging workflow detected
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
Vulnerabilities	⚠️ 0	29 existing vulnerabilities detected

pip/langchain-anthropic

^ 0.1.11

🟢 5

Details

Check	Score	Reason
Code-Review	🟢 4	Found 12/30 approved changesets -- score normalized to 4
Maintained	🟢 10	30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Security-Policy	🟢 10	security policy file detected
Branch-Protection	🟢 3	branch protection is not maximal on development and all release branches
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Binary-Artifacts	🟢 10	no binaries found in the repo
Fuzzing	⚠️ 0	project is not fuzzed
Packaging	🟢 10	packaging workflow detected
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
Vulnerabilities	⚠️ 0	29 existing vulnerabilities detected

pip/langchain-aws

^ 0.1.3

Unknown

pip/langchain-google-genai

^ 1.0.3

Unknown

pip/langchain-groq

^ 0.1.3

🟢 5

Details

Check	Score	Reason
Code-Review	🟢 4	Found 12/30 approved changesets -- score normalized to 4
Maintained	🟢 10	30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Security-Policy	🟢 10	security policy file detected
Branch-Protection	🟢 3	branch protection is not maximal on development and all release branches
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Binary-Artifacts	🟢 10	no binaries found in the repo
Fuzzing	⚠️ 0	project is not fuzzed
Packaging	🟢 10	packaging workflow detected
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
Vulnerabilities	⚠️ 0	29 existing vulnerabilities detected

pip/langchain-openai

^ 0.1.6

🟢 5

Details

Check	Score	Reason
Code-Review	🟢 4	Found 12/30 approved changesets -- score normalized to 4
Maintained	🟢 10	30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Security-Policy	🟢 10	security policy file detected
Branch-Protection	🟢 3	branch protection is not maximal on development and all release branches
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Binary-Artifacts	🟢 10	no binaries found in the repo
Fuzzing	⚠️ 0	project is not fuzzed
Packaging	🟢 10	packaging workflow detected
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
Vulnerabilities	⚠️ 0	29 existing vulnerabilities detected

pip/minify-html

^ 0.15.0

🟢 3.5

Details

Check	Score	Reason
Maintained	⚠️ 0	0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Code-Review	⚠️ 0	Found 0/30 approved changesets -- score normalized to 0
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ 0	Project has not signed or included provenance with any releases.
Branch-Protection	⚠️ 0	branch protection not enabled on development/release branches
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
SAST	⚠️ 0	no SAST tool detected
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Fuzzing	⚠️ 0	project is not fuzzed
Security-Policy	⚠️ 0	security policy file not detected
Packaging	🟢 10	packaging workflow detected
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0

pip/pandas

^ 2.2.2

🟢 6.4

Details

Check	Score	Reason
Binary-Artifacts	🟢 10	no binaries found in the repo
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
CII-Best-Practices	⚠️ 0	no badge detected
Code-Review	🟢 8	25 out of last 30 changesets reviewed before merge -- score normalized to 8
Contributors	🟢 10	47 different organizations found -- score normalized to 10
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Dependency-Update-Tool	⚠️ 0	no update tool detected
Fuzzing	🟢 10	project is fuzzed with [OSSFuzz]
License	🟢 10	license file detected
Maintained	🟢 10	30 commit(s) out of 30 and 21 issue activity out of 30 found in the last 90 days -- score normalized to 10
Packaging	⚠️ -1	no published package detected
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
SAST	🟢 7	SAST tool detected but not run on all commmits
Security-Policy	🟢 10	security policy file detected
Signed-Releases	⚠️ 0	0 out of 5 artifacts are signed or have provenance
Token-Permissions	⚠️ 0	non read-only tokens detected in GitHub workflows
Vulnerabilities	🟢 10	no vulnerabilities detected

pip/python-dotenv

^ 1.0.1

🟢 5.2

Details

Check	Score	Reason
Code-Review	🟢 5	Found 16/29 approved changesets -- score normalized to 5
Maintained	🟢 8	4 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 8
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Security-Policy	🟢 10	security policy file detected
Packaging	⚠️ -1	packaging workflow not detected
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Signed-Releases	⚠️ -1	no releases found
Branch-Protection	⚠️ 0	branch protection not enabled on development/release branches
Fuzzing	⚠️ 0	project is not fuzzed
Vulnerabilities	🟢 9	1 existing vulnerabilities detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0

pip/tiktoken

^ 0.6.0

🟢 5.1

Details

Check	Score	Reason
Code-Review	🟢 3	Found 10/30 approved changesets -- score normalized to 3
Maintained	🟢 10	10 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Packaging	⚠️ -1	packaging workflow not detected
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Fuzzing	⚠️ 0	project is not fuzzed
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Security-Policy	⚠️ 0	security policy file not detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0

pip/tqdm

^ 4.66.4

🟢 6.6

Details

Check	Score	Reason
Maintained	🟢 10	22 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10
Code-Review	⚠️ 1	Found 1/8 approved changesets -- score normalized to 1
License	🟢 9	license file detected
CII-Best-Practices	🟢 5	badge detected: Passing
Packaging	⚠️ -1	packaging workflow not detected
Dangerous-Workflow	⚠️ -1	no workflows found
Token-Permissions	⚠️ -1	No tokens found
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	⚠️ -1	no dependencies found
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Signed-Releases	🟢 8	5 out of the last 5 releases have a total of 5 signed artifacts.
Fuzzing	🟢 10	project is fuzzed
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Security-Policy	⚠️ 0	security policy file not detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0

pip/yahoo-search-py

^ 0.3

Unknown

pip/beautifulsoup4

4.12.3

Unknown

pip/faiss-cpu

1.8.0

🟢 4.8

Details

Check	Score	Reason
Code-Review	⚠️ 1	Found 2/20 approved changesets -- score normalized to 1
Maintained	🟢 10	6 commit(s) and 8 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ 0	Project has not signed or included provenance with any releases.
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Binary-Artifacts	🟢 10	no binaries found in the repo
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Fuzzing	⚠️ 0	project is not fuzzed
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Security-Policy	⚠️ 0	security policy file not detected
Packaging	🟢 10	packaging workflow detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0

pip/free-proxy

1.1.1

🟢 3.8

Details

Check	Score	Reason
Maintained	⚠️ 0	0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Code-Review	🟢 3	Found 4/13 approved changesets -- score normalized to 3
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Binary-Artifacts	🟢 10	no binaries found in the repo
Token-Permissions	⚠️ -1	No tokens found
Pinned-Dependencies	⚠️ -1	no dependencies found
Packaging	⚠️ -1	packaging workflow not detected
Dangerous-Workflow	⚠️ -1	no workflows found
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Fuzzing	⚠️ 0	project is not fuzzed
Security-Policy	⚠️ 0	security policy file not detected
Vulnerabilities	🟢 9	1 existing vulnerabilities detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0

pip/google

3.0.0

🟢 3.4

Details

Check	Score	Reason
Maintained	🟢 5	5 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 5
Code-Review	⚠️ 1	Found 4/25 approved changesets -- score normalized to 1
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ 0	Project has not signed or included provenance with any releases.
Token-Permissions	⚠️ -1	No tokens found
Dangerous-Workflow	⚠️ -1	no workflows found
Binary-Artifacts	🟢 10	no binaries found in the repo
Packaging	⚠️ -1	packaging workflow not detected
Pinned-Dependencies	⚠️ -1	no dependencies found
Branch-Protection	⚠️ 0	branch protection not enabled on development/release branches
Fuzzing	⚠️ 0	project is not fuzzed
Security-Policy	⚠️ 0	security policy file not detected
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0

pip/graphviz

0.20.1

🟢 5.5

Details

Check	Score	Reason
Code-Review	⚠️ 0	Found 2/30 approved changesets -- score normalized to 0
Maintained	🟢 10	22 commit(s) and 10 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Packaging	⚠️ -1	packaging workflow not detected
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Binary-Artifacts	🟢 10	no binaries found in the repo
Fuzzing	🟢 10	project is fuzzed
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Security-Policy	⚠️ 0	security policy file not detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0

pip/html2text

2020.1.16

🟢 6.1

Details

Check	Score	Reason
Code-Review	🟢 6	Found 12/19 approved changesets -- score normalized to 6
Maintained	🟢 10	5 commit(s) and 8 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Packaging	⚠️ -1	packaging workflow not detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Signed-Releases	⚠️ -1	no releases found
Binary-Artifacts	🟢 10	no binaries found in the repo
Fuzzing	🟢 10	project is fuzzed
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Security-Policy	⚠️ 0	security policy file not detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0

pip/langchain

0.1.14

🟢 5

Details

Check	Score	Reason
Code-Review	🟢 4	Found 12/30 approved changesets -- score normalized to 4
Maintained	🟢 10	30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Security-Policy	🟢 10	security policy file detected
Branch-Protection	🟢 3	branch protection is not maximal on development and all release branches
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Binary-Artifacts	🟢 10	no binaries found in the repo
Fuzzing	⚠️ 0	project is not fuzzed
Packaging	🟢 10	packaging workflow detected
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
Vulnerabilities	⚠️ 0	29 existing vulnerabilities detected

pip/langchain-aws

^ 0.1.2

Unknown

pip/langchain-google-genai

1.0.1

Unknown

pip/langchain-groq

0.1.3

🟢 5

Details

Check	Score	Reason
Code-Review	🟢 4	Found 12/30 approved changesets -- score normalized to 4
Maintained	🟢 10	30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Security-Policy	🟢 10	security policy file detected
Branch-Protection	🟢 3	branch protection is not maximal on development and all release branches
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Binary-Artifacts	🟢 10	no binaries found in the repo
Fuzzing	⚠️ 0	project is not fuzzed
Packaging	🟢 10	packaging workflow detected
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
Vulnerabilities	⚠️ 0	29 existing vulnerabilities detected

pip/langchain-openai

0.1.1

🟢 5

Details

Check	Score	Reason
Code-Review	🟢 4	Found 12/30 approved changesets -- score normalized to 4
Maintained	🟢 10	30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Security-Policy	🟢 10	security policy file detected
Branch-Protection	🟢 3	branch protection is not maximal on development and all release branches
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Binary-Artifacts	🟢 10	no binaries found in the repo
Fuzzing	⚠️ 0	project is not fuzzed
Packaging	🟢 10	packaging workflow detected
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
Vulnerabilities	⚠️ 0	29 existing vulnerabilities detected

pip/minify-html

0.15.0

🟢 3.5

Details

Check	Score	Reason
Maintained	⚠️ 0	0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Code-Review	⚠️ 0	Found 0/30 approved changesets -- score normalized to 0
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ 0	Project has not signed or included provenance with any releases.
Branch-Protection	⚠️ 0	branch protection not enabled on development/release branches
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
SAST	⚠️ 0	no SAST tool detected
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Fuzzing	⚠️ 0	project is not fuzzed
Security-Policy	⚠️ 0	security policy file not detected
Packaging	🟢 10	packaging workflow detected
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0

pip/pandas

2.0.3

🟢 6.4

Details

Check	Score	Reason
Binary-Artifacts	🟢 10	no binaries found in the repo
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
CII-Best-Practices	⚠️ 0	no badge detected
Code-Review	🟢 8	25 out of last 30 changesets reviewed before merge -- score normalized to 8
Contributors	🟢 10	47 different organizations found -- score normalized to 10
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Dependency-Update-Tool	⚠️ 0	no update tool detected
Fuzzing	🟢 10	project is fuzzed with [OSSFuzz]
License	🟢 10	license file detected
Maintained	🟢 10	30 commit(s) out of 30 and 21 issue activity out of 30 found in the last 90 days -- score normalized to 10
Packaging	⚠️ -1	no published package detected
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
SAST	🟢 7	SAST tool detected but not run on all commmits
Security-Policy	🟢 10	security policy file detected
Signed-Releases	⚠️ 0	0 out of 5 artifacts are signed or have provenance
Token-Permissions	⚠️ 0	non read-only tokens detected in GitHub workflows
Vulnerabilities	🟢 10	no vulnerabilities detected

pip/python-dotenv

1.0.1

🟢 5.2

Details

Check	Score	Reason
Code-Review	🟢 5	Found 16/29 approved changesets -- score normalized to 5
Maintained	🟢 8	4 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 8
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Security-Policy	🟢 10	security policy file detected
Packaging	⚠️ -1	packaging workflow not detected
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Signed-Releases	⚠️ -1	no releases found
Branch-Protection	⚠️ 0	branch protection not enabled on development/release branches
Fuzzing	⚠️ 0	project is not fuzzed
Vulnerabilities	🟢 9	1 existing vulnerabilities detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0

pip/tiktoken

>= 0.5.2,< 0.6.0

🟢 5.1

Details

Check	Score	Reason
Code-Review	🟢 3	Found 10/30 approved changesets -- score normalized to 3
Maintained	🟢 10	10 commit(s) and 6 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Packaging	⚠️ -1	packaging workflow not detected
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Fuzzing	⚠️ 0	project is not fuzzed
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Security-Policy	⚠️ 0	security policy file not detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0

pip/tqdm

4.66.3

🟢 6.6

Details

Check	Score	Reason
Maintained	🟢 10	22 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10
Code-Review	⚠️ 1	Found 1/8 approved changesets -- score normalized to 1
License	🟢 9	license file detected
CII-Best-Practices	🟢 5	badge detected: Passing
Packaging	⚠️ -1	packaging workflow not detected
Dangerous-Workflow	⚠️ -1	no workflows found
Token-Permissions	⚠️ -1	No tokens found
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	⚠️ -1	no dependencies found
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Signed-Releases	🟢 8	5 out of the last 5 releases have a total of 5 signed artifacts.
Fuzzing	🟢 10	project is fuzzed
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Security-Policy	⚠️ 0	security policy file not detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0

pip/langchain-anthropic

0.1.11

🟢 5

Details

Check	Score	Reason
Code-Review	🟢 4	Found 12/30 approved changesets -- score normalized to 4
Maintained	🟢 10	30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Security-Policy	🟢 10	security policy file detected
Branch-Protection	🟢 3	branch protection is not maximal on development and all release branches
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Binary-Artifacts	🟢 10	no binaries found in the repo
Fuzzing	⚠️ 0	project is not fuzzed
Packaging	🟢 10	packaging workflow detected
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
Vulnerabilities	⚠️ 0	29 existing vulnerabilities detected

pip/yahoo-search-py

0.3

Unknown

Scanned Manifest Files

pyproject.toml

beautifulsoup4@^ 4.12.3
faiss-cpu@^ 1.8.0
free-proxy@^ 1.1.1
google@^ 3.0.0
graphviz@^ 0.20.3
html2text@^ 2024.2.26
[email protected]
langchain-anthropic@^ 0.1.11
langchain-aws@^ 0.1.3
langchain-google-genai@^ 1.0.3
langchain-groq@^ 0.1.3
langchain-openai@^ 0.1.6
minify-html@^ 0.15.0
pandas@^ 2.2.2
python-dotenv@^ 1.0.1
tiktoken@^ 0.6.0
tqdm@^ 4.66.4
yahoo-search-py@^ 0.3
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
langchain-aws@^ 0.1.2
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
tiktoken@>= 0.5.2,< 0.6.0
[email protected]

requirements.txt

…roblem

Fix embeddings and local models bugs

## [0.10.0-beta.2](v0.10.0-beta.1...v0.10.0-beta.2) (2024-05-08) ### Bug Fixes * **examples:** local, mixed models and fixed SearchGraph embeddings problem ([6b71ec1](6b71ec1)) * **examples:** openai std examples ([186c0d0](186c0d0)) * removed .lock file for deployment ([d4c7d4e](d4c7d4e)) ### Docs * update README.md ([17ec992](17ec992))

github-actions · 2024-05-08T13:53:27Z

🎉 This PR is included in version 0.10.0 🎉

The release is available on:

v0.10.0
GitHub release

Your semantic-release bot 📦🚀

VinciGit00 and others added 30 commits May 3, 2024 16:52

Merge pull request #136 from VinciGit00/pre/beta

8b94fe8

Pre/beta

add claude model

39f64e5

feat: add claude documentation

5bdee55

feat: refactoring search function

aeb1acb

fix: bug on .toml

f7d66f5

Merge pull request #138 from VinciGit00/new-search-function

8c6dda6

feat: refactoring search function

ci(release): 0.9.0-beta.2 [skip ci]

5aa600c

## [0.9.0-beta.2](v0.9.0-beta.1...v0.9.0-beta.2) (2024-05-05) ### Features * refactoring search function ([aeb1acb](aeb1acb)) ### Bug Fixes * bug on .toml ([f7d66f5](f7d66f5))

Merge branch 'pre/beta' into 133-support-claude3-haiku-and-others-usi…

0ab7272

…ng-litellm

Merge pull request #137 from VinciGit00/133-support-claude3

c06e1e9

feat: 133 support claude3

ci(release): 0.9.0-beta.3 [skip ci]

da8c72c

## [0.9.0-beta.3](v0.9.0-beta.2...v0.9.0-beta.3) (2024-05-05) ### Features * add claude documentation ([5bdee55](5bdee55))

Added update_config function to base_node.py

b7539d4

Corrected logic of update_config function in base_node.py

c2c6162

Changed node_config["llm"] to node_config["llm_model"]

729d5d7

Adjusted graphs to reflect node_config change

2178485

Created set_common_params function

444a13a

Simplified create graph functions using common params

4dc6049

feat: add gemini embeddings

79daa4c

Added overwrite keyword to set_common_params`

8d0e109

Corrected graphs to use common params

a53e95c

Miscellaneous "llm" -> "llm_model" refactors

3ae2ea1

Resolved key error "llm" -> "llm_model"

f10a44a

Merge branch 'pre/beta' into pass-common-params-graph

cc27b21

Merge pull request #154 from epage480/pass-common-params-graph

3bef9bb

Pass common params to nodes in graph

Merge pull request #153 from VinciGit00/google_embeddings

36a1522

feat: add gemini embeddings

ci(release): 0.9.0-beta.4 [skip ci]

8c5397f

## [0.9.0-beta.4](v0.9.0-beta.3...v0.9.0-beta.4) (2024-05-05) ### Features * add gemini embeddings ([79daa4c](79daa4c))

feat: fixed custom_graphs example and robots_node

84fcb44

add example custom search graph

16f53c5

exposed abstract_graph allowing the user to create new graphs

1c4ba91

feat: multiple graph instances

dbb614a

feat(node): multiple url search in SearchGraph + fixes

930adb3

Implemented GraphIteratorNode and MergeAnswersNode to create multiple istances of a graph and merge the scraped content from multiple pages

PeriniM and others added 18 commits May 6, 2024 13:17

fix(llm): fixed gemini api_key

fd01b73

Merge pull request #159 from VinciGit00/fix-gemini-apikey

b053953

fix(llm): fixed gemini api_key

ci(release): 0.9.0-beta.7 [skip ci]

6911e21

## [0.9.0-beta.7](v0.9.0-beta.6...v0.9.0-beta.7) (2024-05-06) ### Bug Fixes * **llm:** fixed gemini api_key ([fd01b73](fd01b73))

Update models_tokens.py

ac0a2e5

Merge branch 'pre/beta' of https://github.com/VinciGit00/Scrapegraph-ai…

8c7c3e3

… into pre/beta

Added support for Claude 3 models from Anthropic

e264e92

Fixed accidental reformatting.

2ac9e16

feat: add new hugging_face models

d5547a4

Merge pull request #157 from VinciGit00/llava_integration

f6442cc

ci(release): 0.9.0-beta.8 [skip ci]

739aaa3

## [0.9.0-beta.8](v0.9.0-beta.7...v0.9.0-beta.8) (2024-05-06) ### Features * add llava integration ([019b722](019b722))

Merge pull request #162 from f-aguzzi/patch-1

97c3fff

feat: add new hugging_face models

removed claude

cbd77df

Merge branch 'pre/beta' of https://github.com/VinciGit00/Scrapegraph-ai…

ac6d200

… into pre/beta

Merge branch 'pre/beta' into pr/161

5a67bca

Merge pull request #161 from cemkod/main

88f04bf

Support for Anthropic Claude 3 models

add new search graph examples

2258fe5

Merge pull request #169 from VinciGit00/main

8632c0a

allignment

VinciGit00 temporarily deployed to development May 7, 2024 20:27 — with GitHub Actions Inactive

VinciGit00 requested a review from PeriniM May 7, 2024 20:28

PeriniM added 4 commits May 8, 2024 14:56

fix(examples): openai std examples

186c0d0

fix(examples): local, mixed models and fixed SearchGraph embeddings p…

6b71ec1

…roblem

Merge pull request #177 from VinciGit00/fix-bugs

71fcdfa

Fix embeddings and local models bugs

fix: removed .lock file for deployment

d4c7d4e

PeriniM temporarily deployed to development May 8, 2024 13:47 — with GitHub Actions Inactive

PeriniM merged commit 5ea4df4 into main May 8, 2024
1 check passed

github-actions bot added the released on @stable label May 8, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

update #170

update #170

VinciGit00 commented May 7, 2024

github-actions bot commented May 7, 2024 •

edited

Loading

github-actions bot commented May 8, 2024

update #170

update #170

Conversation

VinciGit00 commented May 7, 2024

github-actions bot commented May 7, 2024 • edited Loading

Dependency Review

License Issues

pyproject.toml

OpenSSF Scorecard

Scanned Manifest Files

github-actions bot commented May 8, 2024

github-actions bot commented May 7, 2024 •

edited

Loading