Package Health Score

71 / 100

security
Security review needed
popularity
Small
maintenance
Sustainable
community
Active

Explore Similar Packages

Security

Security review needed

All security vulnerabilities belong to production dependencies of direct and indirect packages.

Security and license risk for significant versions

Version				Vulnerabilities	License Risk
0.50.0	\|	11/2023		0 C 0 H 0 M 0 L	0 H 0 M 0 L
0.44.0	\|	10/2023	Popular	0 C 0 H 0 M 0 L	0 H 0 M 0 L
0.43.0	\|	09/2023		0 C 0 H 0 M 0 L	0 H 0 M 0 L
0.42.0	\|	08/2023		0 C 0 H 0 M 0 L	0 H 0 M 0 L
0.41.0	\|	12/2022		0 C 0 H 0 M 0 L	0 H 0 M 0 L

License

BSD-3-Clause

Security Policy

Is your project affected by vulnerabilities?

Scan your projects for vulnerabilities. Fix quickly with automated fixes. Get started with Snyk for free.

Get started free

Popularity

Small

Weekly Downloads (4,076)

GitHub Stars: 1.39K
Forks: 299
Contributors: 90

Direct Usage Popularity

The npm package @jupyterlab/git receives a total of 4,076 downloads a week. As such, we scored @jupyterlab/git popularity level to be Small.

Based on project statistics from the GitHub repository for the npm package @jupyterlab/git, we found that it has been starred 1,385 times.

Downloads are calculated as moving averages for a period of the last 12 months, excluding weekends and known missing data points.

Community

Active

Readme.md: Yes
Contributing.md: Yes
Code of Conduct: Yes
Contributors: 90
Funding: Yes

With more than 10 contributors for the @jupyterlab/git repository, this is possibly a sign for a growing and inviting community.

Embed Package Health Score Badge

Maintenance

Sustainable

Commit Frequency

Open Issues: 88
Open PR: 8
Last Release: 5 months ago
Last Commit: 2 months ago

Further analysis of the maintenance status of @jupyterlab/git based on released npm versions cadence, the repository activity, and other data points determined that its maintenance is Sustainable.

We found that @jupyterlab/git demonstrates a positive version release cadence with at least one new version released in the past 12 months.

In the past month we didn't find any pull request activity or change in issues status has been detected for the GitHub repository.

Keep your project healthy

Check your package.json

Ensure all the packages you're using are healthy and well-maintained

Snyk Vulnerability Scanner

Get health score & security insights directly in your IDE

Package

Node.js Compatibility: not defined

Age: 6 years
Dependencies: 39 Direct
Versions: 79
Install Size: 723 kB
Dist-tags: 2
# of Files: 192
Maintainers: 1
TS Typings: Yes

@jupyterlab/git has more than a single and default latest tag published for the npm package. This means, there may be other tags available for this package, such as next to indicate future releases, or stable to indicate stable releases.

Readme

jupyterlab-git

A JupyterLab extension for version control using Git

ui_glow_up

To see the extension in action, open the example notebook included in the Binder demo.

Requirements

JupyterLab >= 4.0 ([older version] available for 2.x)
Git (version >=2.x)

For older versions of JupyterLab, go to:

Usage

Open the Git extension from the Git tab on the left panel
Set up authentication

Install

To install perform the following steps, with pip:

pip install --upgrade "jupyterlab&lt;4" jupyterlab-git

or with conda:

conda install -c conda-forge "jupyterlab&lt;4" jupyterlab-git

Uninstall

To remove the extension, execute:

pip uninstall jupyterlab_git

or with conda:

conda remove jupyterlab-git

Settings

Authentication to remote repository hosts

If you are seeing errors similar to [E yyyy-mm-dd hh:mm:ss ServerApp] 500 POST /git/ on the console which is running the JupyterLab server, you probably need to set up a credentials store for your local Git repository.

This extension tries to handle credentials for HTTP(S) connections (if you don't have set up a credential manager). But not for other SSH connections.

> For Windows users, it is recommended to install git for windows. It will automatically set up a credential manager. > In order to connect to a remote host, it is recommended to use SSH.

HTTP(S) protocol

The extension can cache temporarily (by default for an hour) credentials. To use the caching, you will need to check the option Save my login temporarily in the dialog asking your credentials.

> You can set a longer cache timeout; see Server Settings.

> This is a new feature since v0.37.0

SSH protocol

Here are the steps to follow to set up SSH authentication (skip any that is already accomplished for your project):

Create a SSH key
Register the public part of it to your Git server:
- GitHub
- GitLab
Optionally, if you have more than one key managed by your ssh agent: Create a config file for the ssh-agent
Tell your local Git repository to connect to remote via ssh

You should now be able to pull and push committed changes to and from your remote repository using the respective buttons on the top of the extension's panel.

UI Settings

Once installed, extension behavior can be modified via the following settings which can be set in JupyterLab's advanced settings editor:

blockWhileCommandExecutes: suspend JupyterLab user interaction until Git commands (e.g., commit, pull, reset, revert) finish executing. Setting this to true helps mitigate potential race conditions leading to data loss, conflicts, and a broken Git history. Unless running a slow network, UI suspension should not interfere with standard workflows. Setting this to false allows for actions to trigger multiple concurrent Git actions.
cancelPullMergeConflict: cancel pulling changes from a remote repository if there exists a merge conflict. If set to true, when fetching and integrating changes from a remote repository, a conflicting merge is canceled and the working tree left untouched.
commitAndPush: Whether to trigger or not a push for each commit; default is false.
disableBranchWithChanges: disable all branch operations, such as creating a new branch or switching to a different branch, when there are changed/staged files. When set to true, this setting guards against overwriting and/or losing uncommitted changes.
displayStatus: display Git extension status updates in the JupyterLab status bar. If true, the extension displays status updates in the JupyterLab status bar, such as when pulling and pushing changes, switching branches, and polling for changes. Depending on the level of extension activity, some users may find the status updates distracting. In which case, setting this to false should reduce visual noise.
doubleClickDiff: double click a file in the Git extension panel to open a diff of the file instead of opening the file for editing.
historyCount: number of commits shown in the history log, beginning with the most recent. Displaying a larger number of commits can lead to performance degradation, so use caution when modifying this setting.
promptUserIdentity: Whether to prompt for user name and email on every commit.
refreshIfHidden: whether to refresh even if the Git tab is hidden; default to false (i.e. refresh is turned off if the Git tab is hidden).
refreshInterval: number of milliseconds between polling the file system for changes. In order to ensure that the UI correctly displays the current repository status, the extension must poll the file system for changes. Longer polling times increase the likelihood that the UI does not reflect the current status; however, longer polling times also incur less performance overhead.
simpleStaging: enable a simplified concept of staging. When this setting is true, all files with changes are automatically staged. When we develop in JupyterLab, we often only care about what files have changed (in the broadest sense) and don't need to distinguish between "tracked" and "untracked" files. Accordingly, this setting allows us to simplify the visual presentation of changes, which is especially useful for those less acquainted with Git.

Server Settings

JupyterLabGit.actions.post_init: Set post git init actions. It is possible to provide a list of commands to be executed in a folder after it is initialized as Git repository.
JupyterLabGit.credential_helper: Git credential helper to set to cache the credentials. The default value is cache --timeout=3600 to cache the credentials for an hour. If you want to cache them for 10 hours, set cache --timeout=36000.
JupyterLabGit.excluded_paths: Set path patterns to exclude from this extension. You can use wildcard and interrogation mark for respectively everything or any single character in the pattern.
JupyterLabGit.git_command_timeout_s: Set the timeout for git operations. Defaults to 20 seconds.

How to set server settings?

In $HOME/.jupyter/jupyter_notebook_config.py (on Windows %USERPROFILE%/.jupyter/jupyter_notebook_config.py):

c.JupyterLabGit.actions = {"post_init": ["touch dummy_init.dat"]}
c.JupyterLabGit.credential_helper = 'cache --timeout=3600'

Or equivalently in $HOME/.jupyter/jupyter_notebook_config.json (on Windows %USERPROFILE%/.jupyter/jupyter_notebook_config.json):

{
  "JupyterLabGit": {
    "actions": {
      "post_init": ["touch dummy_init.dat"]
    },
    "credential_helper": "cache --timeout=3600"
  }
}

Troubleshoot

If you are seeing the frontend extension, but it is not working, check that the server extension is enabled:

jupyter server extension list

If the server extension is installed and enabled, but you are not seeing the frontend extension, check the frontend extension is installed:

jupyter labextension list

If they do not match or one is missing, please reinstall the package.

the Git panel does not recognize that you are in a Git repository.

Possible fixes:

Be sure to be in a Git repository in the filebrowser tab
Check the server log. If you see a warning with a 404 code similar to: [W 00:27:41.800 LabApp] 404 GET /git/settings?version=0.20.0

Explicitly enable the server extension by running:
```
jupyter server extension enable --py jupyterlab_git
```
If you are using JupyterHub or some other technologies requiring an initialization script which includes the jupyterlab-git extension, be sure to install both the frontend and the server extension before launching JupyterLab.

the Git panel is not visible.

Possible fixes:

Check that the JupyterLab extension is installed:

```bash
jupyter labextension list
```

If you don't see `@jupyterlab/git v... enabled OK` in the list, explicitly install the jupyter labextension by running:

```bash
jupyter labextension install @jupyterlab/git
```

If you see `@jupyterlab/git` under `Uninstalled core extensions: `, your installation may have been corrupted. You can run `jupyter lab clean --all` and
reinstall all your extensions.

Contributing

If you would like to contribute to the project, please read our contributor documentation.

JupyterLab follows the official Jupyter Code of Conduct.

Development install

Note: You will need NodeJS to build the extension package.

The jlpm command is JupyterLab's pinned version of yarn that is installed with JupyterLab. You may use yarn or npm in lieu of jlpm below.

# Clone the repo to your local environment
git clone https://github.com/jupyterlab/jupyterlab-git.git
# Change directory to the jupyterlab-git directory
cd jupyterlab-git
# Install package in development mode
pip install -e ".[dev,test]"
pre-commit install
# Link your development version of the extension with JupyterLab
jupyter labextension develop . --overwrite
# Server extension must be manually installed in develop mode
jupyter server extension enable jupyterlab_git
# Rebuild extension Typescript source after making changes
jlpm run build

You can watch the source directory and run JupyterLab at the same time in different terminals to watch for changes in the extension's source and automatically rebuild the extension.

# Watch the source directory in one terminal, automatically rebuilding when needed
jlpm run watch
# Run JupyterLab in another terminal
jupyter lab

With the watch command running, every saved change will immediately be built locally and available in your running JupyterLab. Refresh JupyterLab to load the change in your browser (you may need to wait several seconds for the extension to be rebuilt).

By default, the jlpm run build command generates the source maps for this extension to make it easier to debug using the browser dev tools. To also generate source maps for the JupyterLab core extensions, you can run the following command:

jupyter lab build --minimize=False

Development uninstall

# Server extension must be manually disabled in develop mode
jupyter server extension disable jupyterlab_git
pip uninstall jupyterlab_git

In development mode, you will also need to remove the symlink created by jupyter labextension develop command. To find its location, you can run jupyter labextension list to figure out where the labextensions folder is located. Then you can remove the symlink named @jupyterlab/git within that folder.

Testing the extension

Server tests

This extension is using Pytest for Python code testing.

Install test dependencies (needed only once):

pip install -e ".[test]"
# Each time you install the Python package, you need to restore the front-end extension link
jupyter labextension develop . --overwrite

To execute them, run:

pytest -vv -r ap --cov jupyterlab_git

Frontend tests

This extension is using Jest for JavaScript code testing.

To execute them, execute:

jlpm
jlpm test

Integration tests

This extension uses Playwright for the integration tests (aka user level tests). More precisely, the JupyterLab helper Galata is used to handle testing the extension in JupyterLab.

More information are provided within the ui-tests README.

Packaging the extension

See RELEASE

Contributors ✨

The Jupyter Git extension is part of Project Jupyter and is developed by an open community of contributors. To see who has been active recently, please look at the "Contributors" tab. Below we list the people and entities who contributed in different ways to the project (emoji key):

_{Amazon Web Services} 🤝	_{Ashutosh Bondre} 💻 👀	_Athan 💻 👀 📆 🎨	_{Ben Asokanthan} 💻	_{Bosco Chan} 💻	_{Brian E. Granger} 📆 🎨 🤔 🔍	_{Daman Arora} 💻
_{Dat Quach} 💻	_{Frédéric Collonval} 🚧	_{Hana Zarea} 💻 👀	_{Ian Hunt-Isaak} 💻 👀	_{Jaipreet Singh} 📆 👀 💻 🎨	_{Ji Zhang} 💻 👀	_{Kentaro Lim} 💻
_{Konstantin Taletskiy} 💻 👀	_{Kostya Farber} 💻	_{Linda Ngoc Nguyen} 💻	_{Major League Hacking} 🤝	_{Max Klein} 💻 👀 📆 🎨 🚇	_{Michał Krassowski} 💻 👀 🐛	_{Navinn Ravindaran} 💻
_{Neelam Gehlot} 💻 👀	_{Noah Stapp} 💻 👀	_{Saul Shanabrook} 💻 📆 👀 🚇	_{Shawn Esquivel} 💻	_{Sheeza Aziz} 💻	_{Sina Khalili} 💻	_{The D. E. Shaw Group} 🤝
_{Zeshan Fayyaz} 💻	_{jupytercalpoly} 🤝

This project follows the all-contributors specification. Contributions of any kind are welcomed!

To add yourself, or someone else, to this list you can either use the bot (@all-contributors please add for ) or the CLI (jlpm all-contributors add ).

If you manually edit the .all-contributorsrc config file, run yarn run contributors:generate.

FAQs

What is @jupyterlab/git?

A JupyterLab extension for version control using git. Visit Snyk Advisor to see a full health score report for @jupyterlab/git, including popularity, security, maintenance & community analysis.

Is @jupyterlab/git popular?

The npm package @jupyterlab/git receives a total of 4,076 weekly downloads. As such, @jupyterlab/git popularity was classified as small. Visit the popularity section on Snyk Advisor to see the full health analysis.

Is @jupyterlab/git well maintained?

We found indications that @jupyterlab/git maintenance is sustainable demonstrating some project activity. We saw a total of 90 open source contributors collaborating on the project. See the full package health analysis to learn more about the package maintenance status.

Is @jupyterlab/git safe to use?

While scanning the latest version of @jupyterlab/git, we found that a security review is needed. A total of 1 vulnerabilities or license issues were detected. See the full security scan results.

Last updated on 11 April-2024, at 06:36 (UTC).

Build a secure application checklist

Select a recommended open source package

Minimize your risk by selecting secure & well maintained open source packages

DONE

Scan your app for vulnerabilities

Scan your application to find vulnerabilities in your: source code, open source dependencies, containers and configuration files

SCAN NOW

Fix identified vulnerabilities

Easily fix your code by leveraging automatically generated PRs

AUTO FIX

Monitor for new issues

New vulnerabilities are discovered every day. Get notified if your application is affected

MONITOR APP