aboutcode-org
diff --git a/‎.github/workflows/pypi-release-aboutcode-hashid.yml‎
Lines changed: 38 additions & 0 deletions b/‎.github/workflows/pypi-release-aboutcode-hashid.yml‎
Lines changed: 38 additions & 0 deletions
diff --git a/‎Makefile‎
Lines changed: 1 addition & 1 deletion b/‎Makefile‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎README.rst‎
Lines changed: 157 additions & 41 deletions b/‎README.rst‎
Lines changed: 157 additions & 41 deletions
@@ -0,0 +1,38 @@
+name: Build aboutcode.hashid Python distributions and publish on PyPI
+
+on:
+  workflow_dispatch:
+  push:
+   tags:
+     - "aboutcode.hashid/*"
+
+jobs:
+  build-and-publish:
+    name: Build and publish library to PyPI
+    runs-on: ubuntu-22.04
+
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: 3.11
+
+      - name: Install flot
+        run: python -m pip install flot --user
+
+      - name: Build binary wheel and source tarball
+        run:  python -m flot --pyproject pyproject-aboutcode.hashid.toml --sdist --wheel --output-dir dist/
+
+      - name: Publish to PyPI
+        if: startsWith(github.ref, 'refs/tags')
+        uses: pypa/gh-action-pypi-publish@release/v1
+        with:
+          password: ${{ secrets.PYPI_API_TOKEN_ABOUTCODE_HASHID }}
+
+      - name: Upload built archives
+        uses: actions/upload-artifact@v4
+        with:
+          name: pypi_archives
+          path: dist/*
@@ -125,7 +125,7 @@ bump:
 
 docs:
 	rm -rf docs/_build/
-	@${ACTIVATE} sphinx-build docs/ docs/_build/
+	@${ACTIVATE} sphinx-build docs/source docs/_build/
 
 docker-images:
 	@echo "-> Build Docker services"
 
@@ -38,7 +38,6 @@ we are trying to change this and evolve the status quo in a few other areas!
 
 Package URL themselves were designed first in ScanCode and VulnerableCode
 and are now a de-facto standard for vulnerability management and package references.
-
 See https://github.com/package-url/purl-spec
 
 The VulnerableCode project is a FOSS community resource to help improve the
@@ -47,34 +46,39 @@ security of the open source software ecosystem and its users at large.
 VulnerableCode consists of a database and the tools to collect, refine and keep
 the database current. 
 
-.. warning::
-    VulnerableCode is under active development and is not yet fully
-    usable.
 
-Read more about VulnerableCode https://vulnerablecode.readthedocs.org/
+.. pull-quote::
+   **Warning**
+
+   VulnerableCode is under active development and is not yet fully
+   usable.
+
 
-VulnerableCode is financially supported by NLnet, nexB, Google (through the
-GSoC) and the active contributions of several volunteers.
+Read more about VulnerableCode https://vulnerablecode.readthedocs.org/
 
 VulnerableCode tech stack is Python, Django, PostgreSQL, nginx and Docker and
 several libraries.
 
 
 Getting started
----------------
+===============
 
 Run with Docker
-^^^^^^^^^^^^^^^^
+---------------
 
-First install docker, then run::
+First install docker, then run
+
+.. code:: bash
 
     git clone https://github.com/nexB/vulnerablecode.git && cd vulnerablecode
     make envfile
     docker compose build
     docker compose up -d
     docker compose run vulnerablecode ./manage.py import --list
 
-Then run an importer for nginx advisories (which is small)::
+Then run an importer for nginx advisories (which is small)
+
+.. code:: bash
 
     docker compose exec vulnerablecode ./manage.py import vulnerabilities.importers.nginx.NginxImporter
     docker compose exec vulnerablecode ./manage.py improve --all
@@ -84,22 +88,29 @@ some data at http://localhost
 
 
 Populate VulnerableCode database
-^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+--------------------------------
 
 VulnerableCode data collection works in two steps: importing data from multiple
 sources and then refining and improving how package and software vulnerabilities
 are related.
 
-To run all importers and improvers use this::
+To run all importers and improvers use this
+
+.. code:: bash
 
    ./manage.py import --all
+
+.. code:: bash
+
    ./manage.py improve --all
 
 
 Local development installation
-^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+------------------------------
+
+On a Debian system, use this
 
-On a Debian system, use this::
+.. code:: bash
 
     sudo apt-get install  python3-venv python3-dev postgresql libpq-dev build-essential
     git clone https://github.com/nexB/vulnerablecode.git && cd vulnerablecode
@@ -112,22 +123,9 @@ On a Debian system, use this::
 
 At this point, the VulnerableCode app and API is up at http://127.0.0.1:8001/
 
-Interface
-^^^^^^^^^^
-
-
-VulnerableCode comes with a minimal web UI:
-
-.. image:: vulnerablecode-ui.png
-
-And a JSON API and its minimal web documentation:
-
-.. image:: vulnerablecode-json-api.png
-.. image:: vulnerablecode-api-doc.png
-
 
 License
-^^^^^^^^^^
+========
 
 Copyright (c) nexB Inc. and others. All rights reserved.
 
@@ -147,19 +145,137 @@ See https://github.com/nexB/vulnerablecode for support or download.
 
 See https://aboutcode.org for more information about nexB OSS projects.
 
-Acknowledgements
-^^^^^^^^^^^^^^^^
 
-This project was funded through the NGI0 PET Fund, a fund established by
-NLnet with financial support from the European Commission's Next Generation
-Internet programme, under the aegis of DG Communications Networks, Content
-and Technology under grant agreement No 825310.
+Acknowledgements, Funding, Support and Sponsoring
+=================================================
+
+This project is funded, supported and sponsored by:
+
+- Generous support and contributions from users like you!
+- the European Commission NGI programme
+- the NLnet Foundation 
+- the Swiss State Secretariat for Education, Research and Innovation (SERI)
+- Google, including the Google Summer of Code and the Google Seasons of Doc programmes
+- Mercedes-Benz Group
+- Microsoft and Microsoft Azure
+- AboutCode ASBL
+- nexB Inc. 
+
+
+
+|europa|   |dgconnect| 
+
+|ngi|   |nlnet|   
+
+|aboutcode|  |nexb|
+
+
+
+This project was funded through the NGI0 PET Fund, a fund established by NLnet with financial
+support from the European Commission's Next Generation Internet programme, under the aegis of DG
+Communications Networks, Content and Technology under grant agreement No 825310.
+
+|ngizeropet|  https://nlnet.nl/project/VulnerableCode/
+
+
+This project was funded through the NGI0 Discovery Fund, a fund established by NLnet with financial
+support from the European Commission's Next Generation Internet programme, under the aegis of DG
+Communications Networks, Content and Technology under grant agreement No 825322.
+
+|ngidiscovery| https://nlnet.nl/project/vulnerabilitydatabase/
+
+
+This project was funded through the NGI0 Core Fund, a fund established by NLnet with financial
+support from the European Commission's Next Generation Internet programme, under the aegis of DG
+Communications Networks, Content and Technology under grant agreement No 101092990.
+
+|ngizerocore| https://nlnet.nl/project/VulnerableCode-enhancements/
+
+
+This project is funded through the NGI0 Entrust Fund, a fund established by NLnet with financial
+support from the European Commission's Next Generation Internet programme, under the aegis of DG
+Communications Networks, Content and Technology under grant agreement No 101069594.
+
+|ngizeroentrust| https://nlnet.nl/project/FederatedSoftwareMetadata/
+
+
+This project was funded through the NGI0 Commons Fund, a fund established by NLnet with financial
+support from the European Commission's Next Generation Internet programme, under the aegis of DG
+Communications Networks, Content and Technology under grant agreement No 101135429. Additional
+funding is made available by the Swiss State Secretariat for Education, Research and Innovation
+(SERI). 
+
+|ngizerocommons| |swiss| https://nlnet.nl/project/FederatedCodeNext/
+
+This project was funded through the NGI0 Entrust Fund, a fund established by NLnet with financial
+support from the European Commission's Next Generation Internet programme, under the aegis of DG
+Communications Networks, Content and Technology under grant agreement No 101069594. 
+
+|ngizeroentrust| https://nlnet.nl/project/CRAVEX/
+
+
+
+.. |nlnet| image:: https://nlnet.nl/logo/banner.png
+    :target: https://nlnet.nl
+    :height: 50
+    :alt: NLnet foundation logo
+
+.. |ngi| image:: https://ngi.eu/wp-content/uploads/thegem-logos/logo_8269bc6efcf731d34b6385775d76511d_1x.png
+    :target: https://ngi.eu35
+    :height: 50
+    :alt: NGI logo
+
+.. |nexb| image:: https://nexb.com/wp-content/uploads/2022/04/nexB.svg
+    :target: https://nexb.com
+    :height: 30
+    :alt: nexB logo
+
+.. |europa| image:: https://ngi.eu/wp-content/uploads/sites/77/2017/10/bandiera_stelle.png
+    :target: http://ec.europa.eu/index_en.htm
+    :height: 40
+    :alt: Europa logo
+
+.. |aboutcode| image:: https://aboutcode.org/wp-content/uploads/2023/10/AboutCode.svg
+    :target: https://aboutcode.org/
+    :height: 30
+    :alt: AboutCode logo
+
+.. |swiss| image:: https://www.sbfi.admin.ch/sbfi/en/_jcr_content/logo/image.imagespooler.png/1493119032540/logo.png
+    :target: https://www.sbfi.admin.ch/sbfi/en/home/seri/seri.html
+    :height: 40
+    :alt: Swiss logo
+
+.. |dgconnect| image:: https://commission.europa.eu/themes/contrib/oe_theme/dist/ec/images/logo/positive/logo-ec--en.svg
+    :target: https://commission.europa.eu/about-european-commission/departments-and-executive-agencies/communications-networks-content-and-technology_en
+    :height: 40
+    :alt: EC DG Connect logo
+
+.. |ngizerocore| image:: https://nlnet.nl/image/logos/NGI0_tag.svg
+    :target: https://nlnet.nl/core
+    :height: 40
+    :alt: NGI Zero Core Logo
+
+.. |ngizerocommons| image:: https://nlnet.nl/image/logos/NGI0_tag.svg
+    :target: https://nlnet.nl/commonsfund/
+    :height: 40
+    :alt: NGI Zero Commons Logo
+
+.. |ngizeropet| image:: https://nlnet.nl/image/logos/NGI0PET_tag.svg
+    :target: https://nlnet.nl/PET
+    :height: 40
+    :alt: NGI Zero PET logo
 
-https://nlnet.nl/project/VulnerableCode/
+.. |ngizeroentrust| image:: https://nlnet.nl/image/logos/NGI0Entrust_tag.svg
+    :target: https://nlnet.nl/entrust
+    :height: 38
+    :alt: NGI Zero Entrust logo
 
-This project was funded through the NGI0 Discovery Fund, a fund established
-by NLnet with financial support from the European Commission's Next Generation
-Internet programme, under the aegis of DG Communications Networks, Content
-and Technology under grant agreement No 825322.
+.. |ngiassure| image:: https://nlnet.nl/image/logos/NGIAssure_tag.svg
+    :target: https://nlnet.nl/image/logos/NGIAssure_tag.svg
+    :height: 32
+    :alt: NGI Assure logo
 
-https://nlnet.nl/project/vulnerabilitydatabase/
+.. |ngidiscovery| image:: https://nlnet.nl/image/logos/NGI0Discovery_tag.svg
+    :target: https://nlnet.nl/discovery/
+    :height: 40
+    :alt: NGI Discovery logo