a bit more security first + sandbox implementation

Author: soodoku

.gitignore

@@ -110,6 +110,8 @@ venv/
 ENV/
 env.bak/
 venv.bak/
+docs_test_env/
+test_fix_env/
 
 # Spyder project settings
 .spyderproject
@@ -139,3 +141,4 @@ piedomains/model/shallalist/
 archive_html_*/
 archive_images_*/
 /cache
+/test_cache

CHANGELOG.md

@@ -5,6 +5,24 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [0.4.2] - 2025-12-15
+
+### Fixed
+- **Dependency Management**: Removed `_has_llm` anti-pattern and implemented proper Python dependency management via pyproject.toml
+- **BeautifulSoup Warning**: Fixed deprecation warning by replacing `text=True` with `string=True` in text processor
+- **Pytest Warnings**: Added missing `performance` marker to pytest configuration to eliminate unknown mark warnings
+- **LLM Classifier**: Fixed duplicate `max_tokens` parameter error in connection test
+
+### Changed
+- **Documentation Links**: Updated all references from ReadTheDocs to GitHub Pages (https://themains.github.io/piedomains/)
+- **PyPI Links**: Updated PyPI badge to use current domain (pypi.org instead of pypi.python.org)
+- **README**: Streamlined documentation by removing editorial content and marketing language, focusing on minimal practical instructions
+
+### Improved
+- **Code Quality**: All tests now run without warnings (eliminated 3 targeted warnings)
+- **Package Building**: Resolved build conflicts and ensured clean package compilation
+- **Link Verification**: All documentation and package links verified as working
+
 ## [0.4.0] - 2025-12-15
 
 ### 🚨 Breaking Changes
@@ -20,7 +38,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 ### 🔧 Changed
 - **Type Hints**: Modernized all type annotations to use Python 3.11+ union syntax (`|`)
 - **Import Structure**: Added `from __future__ import annotations` for cleaner type hints
-- **Project Structure**: 
+- **Project Structure**:
   - Moved `piedomains/tests/` → `tests/`
   - Moved `piedomains/notebooks/` → `notebooks/`
 - **Configuration**: Enhanced error handling with proper logging in config validation
@@ -108,7 +126,7 @@ This release represents a major cleanup and modernization of the codebase, remov
   - `test_013_performance_benchmarks.py`: Performance and scalability testing
   - Mock-based testing for reliable CI/CD
   - Performance benchmarking and memory usage monitoring
-- **Improved Documentation**: 
+- **Improved Documentation**:
   - New quickstart-focused README with 3-line setup
   - Comprehensive API examples and migration guide
   - `examples/new_api_demo.py`: Interactive demonstration script
@@ -131,7 +149,7 @@ This release represents a major cleanup and modernization of the codebase, remov
   ```python
   # Modern API
   from piedomains import DomainClassifier
-  
+
   # New API available
   from piedomains import DomainClassifier
   ```
@@ -216,7 +234,7 @@ This release represents a major cleanup and modernization of the codebase, remov
   - Error details and context
 - **Comprehensive Test Suite**: 6 new test modules added
   - Domain validation tests
-  - Text processing tests  
+  - Text processing tests
   - Error handling tests
   - Utility function tests
   - Configuration system tests
@@ -248,4 +266,4 @@ This release represents a major cleanup and modernization of the codebase, remov
 - **Tensor Management**: Proper cleanup of TensorFlow tensors to prevent memory leaks
 
 ## [0.0.19] - Previous Release
-- Legacy version with basic functionality
+- Legacy version with basic functionality

README.md

@@ -1,199 +1,125 @@
-# piedomains: AI-powered domain content classification
+# piedomains
 
 [![CI](https://github.com/themains/piedomains/actions/workflows/ci.yml/badge.svg)](https://github.com/themains/piedomains/actions/workflows/ci.yml)
-[![PyPI Version](https://img.shields.io/pypi/v/piedomains.svg)](https://pypi.python.org/pypi/piedomains)
-[![Documentation](https://github.com/themains/piedomains/actions/workflows/docs.yml/badge.svg)](https://github.com/themains/piedomains/actions/workflows/docs.yml)
+[![PyPI Version](https://img.shields.io/pypi/v/piedomains.svg)](https://pypi.org/project/piedomains)
 
-**piedomains** predicts website content categories using traditional ML models or modern LLMs (GPT-4, Claude, Gemini). Analyze domain names, text content, and homepage screenshots to classify websites as news, shopping, adult content, education, etc. with high accuracy and flexible custom categories.
+Classify website content categories using machine learning models or LLMs (GPT-4, Claude, Gemini).
 
-## 🚀 Quickstart
+## Installation
 
-Install and classify domains in 3 lines:
-
-```python
+```bash
 pip install piedomains
+```
+
+Requires Python 3.11+
+
+## Basic Usage
 
+```python
 from piedomains import DomainClassifier
-classifier = DomainClassifier()
 
-# Classify current content
+classifier = DomainClassifier()
 result = classifier.classify(["cnn.com", "amazon.com", "wikipedia.org"])
 print(result[['domain', 'pred_label', 'pred_prob']])
 
-# Expected output:
+# Output:
 #        domain    pred_label  pred_prob
 # 0     cnn.com          news   0.876543
 # 1  amazon.com      shopping   0.923456
 # 2 wikipedia.org   education   0.891234
 ```
 
-## 📊 Key Features
-
-- **High Accuracy**: Combines text analysis + visual screenshots for 90%+ accuracy
-- **LLM-Powered**: Use GPT-4o, Claude 3.5, Gemini with custom categories and instructions
-- **Historical Analysis**: Classify websites from any point in time using archive.org
-- **Fast & Scalable**: Batch processing with caching for 1000s of domains
-- **Easy Integration**: Modern Python API with pandas output
-- **Flexible Categories**: 41 default categories or define your own with AI models
-
-## ⚡ Usage Examples
-
-### Basic Classification
+## Classification Methods
 
 ```python
-from piedomains import DomainClassifier
-
-classifier = DomainClassifier()
+# Combined text + image analysis (most accurate)
+result = classifier.classify(["github.com"])
 
-# Combined analysis (most accurate)
-result = classifier.classify(["github.com", "reddit.com"])
-
-# Text-only (faster)
+# Text-only classification (faster)
 result = classifier.classify_by_text(["news.google.com"])
 
-# Images-only (good for visual content)  
+# Image-only classification
 result = classifier.classify_by_images(["instagram.com"])
-```
-
-### Historical Analysis
 
-```python
-# Analyze how Facebook looked in 2010 vs today
-old_facebook = classifier.classify(["facebook.com"], archive_date="20100101")
-new_facebook = classifier.classify(["facebook.com"])
-
-print(f"2010: {old_facebook.iloc[0]['pred_label']}")
-print(f"2024: {new_facebook.iloc[0]['pred_label']}")
+# Batch processing
+results = classifier.classify_batch(domains, method="text", batch_size=50)
 ```
 
-### Batch Processing
+## Historical Analysis
 
 ```python
-# Process large lists efficiently
-domains = ["site1.com", "site2.com", ...] # 1000s of domains
-results = classifier.classify_batch(
-    domains, 
-    method="text",           # text|images|combined
-    batch_size=50,           # Process 50 at a time
-    show_progress=True       # Progress bar
-)
+# Analyze archived versions from archive.org
+old_result = classifier.classify(["facebook.com"], archive_date="20100101")
 ```
 
-### 🤖 LLM-Powered Classification
-
-Use modern AI models (GPT-4, Claude, Gemini) for flexible, accurate classification:
+## LLM Classification
 
 ```python
-from piedomains import DomainClassifier
-
-classifier = DomainClassifier()
-
-# Configure your preferred AI provider
+# Configure LLM provider
 classifier.configure_llm(
-    provider="openai",           # openai, anthropic, google
-    model="gpt-4o",              # multimodal model
-    api_key="sk-...",            # or set via environment variable
-    categories=["news", "shopping", "social", "tech", "education"]
+    provider="openai",
+    model="gpt-4o",
+    api_key="sk-...",
+    categories=["news", "shopping", "social", "tech"]
 )
 
-# Text-only LLM classification
-result = classifier.classify_by_llm(["cnn.com", "github.com"])
+# LLM-powered classification
+result = classifier.classify_by_llm(["example.com"])
 
-# Multimodal classification (text + screenshots)
-result = classifier.classify_by_llm_multimodal(["instagram.com"])
-
-# Custom classification instructions
+# With custom instructions
 result = classifier.classify_by_llm(
-    ["khanacademy.org", "reddit.com"],
-    custom_instructions="Classify by educational value: educational, entertainment, mixed"
+    ["site.com"],
+    custom_instructions="Classify by educational value"
 )
-
-# Track usage and costs
-stats = classifier.get_llm_usage_stats()
-print(f"API calls: {stats['total_requests']}, Cost: ${stats['estimated_cost_usd']:.4f}")
 ```
 
-**LLM Benefits:**
-- **Custom Categories**: Define your own classification schemes
-- **Multimodal Analysis**: Combines text + visual understanding
-- **Latest AI**: GPT-4o, Claude 3.5 Sonnet, Gemini 1.5 Pro
-- **Cost Tracking**: Built-in usage monitoring and limits
-- **Flexible Prompts**: Customize instructions for specific use cases
-
-**Supported Providers:**
-- **OpenAI**: GPT-4o, GPT-4-turbo, GPT-3.5-turbo
-- **Anthropic**: Claude 3.5 Sonnet, Claude 3 Opus/Haiku
-- **Google**: Gemini 1.5 Pro, Gemini Pro Vision
-- **Others**: Any litellm-supported model
-
+Set API keys via environment variables:
 ```bash
-# Set API keys via environment variables
 export OPENAI_API_KEY="sk-..."
 export ANTHROPIC_API_KEY="sk-ant-..."
 export GOOGLE_API_KEY="..."
 ```
 
-## 🏷️ Supported Categories
-
-News, Finance, Shopping, Education, Government, Adult Content, Gambling, Social Networks, Search Engines, and 32 more categories based on the Shallalist taxonomy.
-
-## 📈 Performance
+## Categories
 
-- **Speed**: ~10-50 domains/minute (depends on method and network)
-- **Accuracy**: 85-95% depending on content type and method
-- **Memory**: <500MB for batch processing
-- **Caching**: Automatic content caching for faster re-runs
+41 categories: news, finance, shopping, education, government, adult content, gambling, social networks, search engines, and others based on Shallalist taxonomy.
 
-## 🔧 Installation
+## Security
 
-**Requirements**: Python 3.11+
+When analyzing unknown domains, use Docker or isolated environments:
 
 ```bash
-# Basic installation
-pip install piedomains
-
-# For development
-git clone https://github.com/themains/piedomains
-cd piedomains
-pip install -e .
-```
-
-## 💡 API Usage
-
-```python
+docker build -t piedomains-sandbox .
+docker run --rm -it piedomains-sandbox python -c "
 from piedomains import DomainClassifier
 classifier = DomainClassifier()
-result = classifier.classify_by_text(["example.com"])
+result = classifier.classify(['example.com'])
+print(result[['domain', 'pred_label']])
+"
 ```
 
-## 📖 Documentation
+For testing, use known-safe domains: `["wikipedia.org", "github.com", "cnn.com"]`
 
-- **API Reference**: https://piedomains.readthedocs.io
-- **Examples**: `/examples` directory
-- **Notebooks**: `/notebooks` (training & analysis)
+## Documentation
 
-## 🤝 Contributing
+- [API Reference](https://themains.github.io/piedomains/)
+- [Examples](examples/)
+- [Security Guide](examples/sandbox/)
+
+## Development
 
 ```bash
-# Setup development environment
 git clone https://github.com/themains/piedomains
 cd piedomains
 pip install -e ".[dev]"
-
-# Run tests
 pytest tests/ -v
-
-# Run linting
-ruff check piedomains/
 ```
 
-## 📄 License
+## License
 
-MIT License - see LICENSE file.
+MIT License
 
-## 📚 Citation
-
-If you use piedomains in research, please cite:
+## Citation
 
 ```bibtex
 @software{piedomains,
@@ -202,4 +128,4 @@ If you use piedomains in research, please cite:
   year={2024},
   url={https://github.com/themains/piedomains}
 }
-```
+```

examples/README.md

@@ -20,6 +20,24 @@ python new_api_demo.py
 python llm_demo.py  # Requires API key
 ```
 
+## 🔒 Security & Sandbox Examples
+
+**⚠️ Important**: For unknown/suspicious domains, use the sandbox examples to protect your system:
+
+```bash
+# Safe, isolated domain classification
+cd examples/sandbox
+python3 secure_classify.py suspicious-domain.com --text-only
+
+# Interactive secure mode
+python3 secure_classify.py --interactive
+
+# See all sandboxing options
+python3 sandbox_demo.py
+```
+
+See **[`sandbox/`](sandbox/)** directory for complete security examples including Docker isolation, macOS sandboxing, and VM setup guides.
+
 ### LLM Demo Setup
 
 For LLM examples, set your API key:
@@ -34,4 +52,4 @@ export GOOGLE_API_KEY="..."          # Google
 Note: These scripts require the piedomains package to be installed:
 ```bash
 pip install -e ..
-```
+```