Skip to content

Extension to visualize metadata provided externally #1418

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
leman31 wants to merge 38 commits into from
Closed

Extension to visualize metadata provided externally #1418

leman31 wants to merge 38 commits into from

Conversation

@leman31
Copy link

@leman31 leman31 commented Jan 17, 2025

No description provided.

leman31 added 30 commits August 8, 2024 15:36
@leman31
First modifications
d5b4d0f
@leman31
Added an example of button under metadata
0fe9203
@leman31
Added a button in the menu
0643830
@leman31
Managed to add imports
7f8a6e6
@leman31
Managed to execute bash for linux
5d4d69d
@leman31
Last modifications
5e97e6e
@leman31
Some bugs solved
a83a114
@leman31
One of the final versions
f4cf43c
@leman31
Fixed bugs
8608a95
@leman31
Small modifications
ee7c809
@leman31
Added more cornercases
196c4ed
@leman31
Solved some bugs
c2f3c68
@leman31
Last modifications
5c2476d
@leman31
New version of code
3add305
@leman31
Added new functionality
c448e53
@leman31
Fixed image hovering
d051a56
@leman31
Added cornercases
44baf07
@leman31
Added cornercases
ef5ac14
@leman31
Fixed bugs and cleaned the code
e00d304
@leman31
Fixed bugs and added comments
5e4a54b
@leman31
Added more modifications
6fdef6a
@leman31
Deleted file
94926ba
@leman31
Other modifications
9026245
@leman31
Cleared console logs
04b9775
@leman31
Cleared more code
b056270
@leman31
Modified
a8affc1
@leman31
Modifications
20306d5
@leman31
Modified comments
d3da404
@leman31
More modifications
04701fc
@leman31
Arranged the code
f0910a7
@mciprian13
Copy link

mciprian13 commented Mar 25, 2025

@lutzroeder Can you please have another look? We are available to answer your questions and requests related to this PR. Thank you!

@lutzroeder lutzroeder force-pushed the main branch 5 times, most recently from 3a62144 to 1c38361 Compare March 30, 2025 16:32
@mciprian13
Copy link

mciprian13 commented Apr 2, 2025

@lutzroeder Kind reminder to help us, based on your availability, to review and land this feature which is important to us.

@lutzroeder lutzroeder force-pushed the main branch 2 times, most recently from c0a8d0d to 94c2a0e Compare April 7, 2025 01:23
lutzroeder added a commit that referenced this pull request Apr 11, 2025
@lutzroeder
Update view.js (#1240) (#1418)
4ae9ce1
@lutzroeder
Copy link
Owner

lutzroeder commented Apr 11, 2025
edited
Loading

Hi @mciprian13 @leman31 — to help move this forward:

  • Let's revert all security-related changes, including the use of unsafe-inline and unsafe-eval.

  • The idea of enabling actions is interesting. However, allowing arbitrary executables to be invoked based on a metrics file introduces significant security concerns — e.g., could a metrics file be crafted to execute malicious code? Also, referencing specific executables isn't portable across platforms. Have you considered using protocol handlers instead?

  • The current pull request modifies and cleans HTML directly, rather than building on the existing data model and sidebar integration. I pushed a change to main that extends the current metrics implementation to support external .metrics.json files using the existing sidebar logic. Would it be possible to shift to that approach as a baseline?

See #1240 for examples. If you open the attached model files and drag a .json file into the view, its metrics will appear in the sidebar alongside built-in and model-derived metrics.

lutzroeder added a commit that referenced this pull request Apr 11, 2025
@lutzroeder
Update view.js (#1240) (#1418)
d714c50
lutzroeder added a commit that referenced this pull request Apr 12, 2025
@lutzroeder
Update view.js (#1240) (#1418)
beff159
@lutzroeder lutzroeder force-pushed the main branch 2 times, most recently from 6e60e95 to df7f56d Compare April 13, 2025 15:58
@mciprian13
Copy link

mciprian13 commented Apr 14, 2025

Hi @mciprian13 @leman31 — to help move this forward:

  • Let's revert all security-related changes, including the use of unsafe-inline and unsafe-eval.
  • The idea of enabling actions is interesting. However, allowing arbitrary executables to be invoked based on a metrics file introduces significant security concerns — e.g., could a metrics file be crafted to execute malicious code? Also, referencing specific executables isn't portable across platforms. Have you considered using protocol handlers instead?
  • The current pull request modifies and cleans HTML directly, rather than building on the existing data model and sidebar integration. I pushed a change to main that extends the current metrics implementation to support external .metrics.json files using the existing sidebar logic. Would it be possible to shift to that approach as a baseline?

For example, if you open the attached model file and drag a .metrics.json file into the view, its metrics will appear in the sidebar alongside built-in and model-derived metrics.

mnist.metrics.zip model.metrics.zip

To your points:

  1. We can revert those changes although we will have to reevaluate to see whether some features are impacted or not.
  2. Having actions by running executables/commands is a very powerful way to add all sort of functionality. For us the security aspect is irrelevant because we are creating the meta files and we are consuming the meta files. The meta files are ways to add extra information/functionality to Netron from outside. This is good enough for us.
  3. Having the same meta in JSON format is a small change but changing the way the same information is imported in the tool is a very significant change and I am afraid we don't have time for such a big change. We will have to evaluate the effort needed but if it is too large we will have to drop the path of upstreaming this.

@lutzroeder lutzroeder force-pushed the main branch 3 times, most recently from dd68bee to a2041e3 Compare May 6, 2025 02:06
@lutzroeder lutzroeder force-pushed the main branch 5 times, most recently from cb704d1 to 32e7ebe Compare May 17, 2025 20:59
@lutzroeder lutzroeder force-pushed the main branch 2 times, most recently from 463fa3e to 5a5700f Compare June 19, 2025 03:03
@lutzroeder lutzroeder closed this Jul 4, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@lutzroeder lutzroeder lutzroeder requested changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@leman31 @mciprian13 @lutzroeder