Package Metadata

Author: notmartin
Email: [email protected]
PyPI: 0g-inference-sdk
Python: >=3.8
Versions: 5 releases
First release: 17 Feb 2026, 11:12 UTC
Analysed: 05 Jun 2026, 10:07 UTC
Source files: 53 .py files scanned

Project Links

Bug Reports Documentation Homepage Source

Classifiers

Development Status :: 3 - AlphaIntended Audience :: DevelopersLicense :: OSI Approved :: MIT LicenseProgramming Language :: Python :: 3Programming Language :: Python :: 3.10Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.8Programming Language :: Python :: 3.9Topic :: Software Development :: Libraries :: Python Modules

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package exhibits medium-level risks due to its potential for subprocess execution and obfuscation techniques, raising concerns about its safety and intentions.

High shell risk due to subprocess execution
Potential obfuscation practices

Per-check LLM notes

Network: Network calls to external services might be legitimate if the package is designed for inference tasks, but need verification of intended usage and destinations.
Shell: Subprocess execution can introduce significant risk if not properly sanitized or controlled, suggesting potential for unintended command execution.
Obfuscation: The observed base64 decoding patterns may indicate an attempt to obfuscate code, but without additional context, it's uncertain if this is malicious.
Credentials: No clear evidence of credential harvesting is present.
Metadata: The author has only one package, which may indicate a new or less active account.

🔬 Heuristic Checks

⚠ Outbound Network Calls score 9.0

Found 6 network call pattern(s)

resp = requests.get( f"{service.url.rstrip('/')}/v1/
try: resp = requests.get(f"{url}/v1/quote", timeout=REQUEST_TIMEOUT) resp
try: resp = requests.post( f"{url}/v1/user/{user_addr}/task",
try: resp = requests.post( f"{url}/v1/user/{user_addr}/task/{task_id}/
try: resp = requests.get( f"{url}/v1/user/{user_addr}/task/{task_id}"
try: resp = requests.get(endpoint, timeout=REQUEST_TIMEOUT) resp.raise_fo

⚠ Code Obfuscation score 10.0

Found 6 obfuscation pattern(s)

ta: decoded = base64.b64decode(report_data).decode("utf-8") signer = decode
decoded_ev = base64.b64decode(evidence).decode( "utf-8", error
decoded = base64.b64decode(nested_rd).decode("utf-8") s
decoded_data = base64.b64decode(report_data).decode('utf-8') signer_address
evidence_decoded = base64.b64decode(evidence).decode('utf-8', errors='ignore')
decoded_data = base64.b64decode(nested_report_data).decode('utf-8')

⚠ Shell / Subprocess Execution score 2.0

Found 1 shell execution pattern(s)

try: result = subprocess.run( cmd, capture_output=True, text=True, timeou

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: gmail.com

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository mandatedisrael/0g-py-sdk appears legitimate

⚠ Maintainer History score 2.0

1 maintainer concern(s) found

Author "notmartin" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with 0g-inference-sdk

Create a decentralized image recognition app using the 0g-inference-sdk package. This app will allow users to upload images, which will then be processed through a decentralized network of AI models hosted on the 0G Compute Network. The app should have the following functionalities:

1. User Interface: Develop a simple web interface where users can upload images. Ensure the UI is user-friendly and responsive.
2. Image Upload: Implement functionality for users to upload images from their local devices directly into the app.
3. Decentralized Inference: Utilize the 0g-inference-sdk package to perform AI inference on the uploaded images. This involves sending the image data to the 0G Compute Network, where it will be analyzed by a series of AI models distributed across the network.
4. Results Display: After processing, display the results back to the user in a clear and understandable format. Include confidence scores for each prediction made by the AI models.
5. Model Selection: Allow users to choose between different types of AI models available on the 0G Compute Network for image analysis, such as object detection, face recognition, or scene classification.
6. Security & Privacy: Ensure that all data transactions are secure and respect user privacy. Use encryption for data in transit and at rest, and comply with relevant data protection regulations.
7. Performance Monitoring: Incorporate metrics to monitor the performance of the decentralized inference process, including latency and accuracy of predictions.
8. Documentation: Provide comprehensive documentation detailing how to install and use the app, along with explanations of how the 0g-inference-sdk package integrates with the application.

This project aims to showcase the capabilities of the 0g-inference-sdk in providing robust, scalable, and secure AI inference services on a decentralized infrastructure.