AI Analysis
Final verdict: SAFE
The package shows very low risk across all critical areas such as network calls, shell execution, and obfuscation. However, the presence of non-HTTPS links and a single package from the author slightly increases the metadata risk.
- Low risk in network, shell, and obfuscation checks.
- Non-HTTPS links and single package from author increase metadata risk.
Per-check LLM notes
- Network: No network calls detected, which is normal unless the package requires internet access for its functionality.
- Shell: No shell execution patterns detected, indicating no direct system command execution from the package.
- Obfuscation: No obfuscation patterns detected, indicating low risk.
- Credentials: No credential harvesting patterns detected, indicating low risk.
- Metadata: The author has only one package, and there are non-HTTPS links which could indicate lack of maintenance or oversight.
Heuristic Checks
Outbound Network Calls
No suspicious network call patterns found
Code Obfuscation
No obfuscation patterns detected
Shell / Subprocess Execution
No shell execution patterns detected
Credential Harvesting
No credential harvesting patterns detected
Typosquatting
No typosquatting candidates detected
Registered Email Domain
Email domain looks legitimate: openscilab.com
Suspicious Page Links
score 4.0
Found 2 suspicious link(s) on the package page
Non-HTTPS external link: http://keepachangelog.com/en/1.0.0/Non-HTTPS external link: http://semver.org/spec/v2.0.0.html
Git Repository History
Repository openscilab/dmeta appears legitimate
Maintainer History
score 2.0
1 maintainer concern(s) found
Author "DMeta Development Team" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities
No known vulnerabilities found in OSV database.
AI App Starter Prompt
Use this prompt to build a project with DMeta
Create a desktop application named 'MetaCleaner' using Python that allows users to remove metadata from Microsoft Office files such as .docx, .xlsx, and .pptx. The application should provide an intuitive graphical user interface (GUI) for file selection and operation execution. The core functionality will be provided by the 'DMeta' package, which you will assume exists and has methods for cleaning metadata from these file types. Step-by-Step Requirements: 1. Design a simple GUI layout using a library like Tkinter for selecting files and initiating the metadata removal process. 2. Implement a function that utilizes the 'DMeta' package to clean metadata from selected files. 3. Ensure the application saves the cleaned files to a specified directory with an option for users to choose the location. 4. Add error handling to manage cases where the selected file cannot be processed due to corruption or unsupported format. 5. Include a feature to display the amount of metadata removed and the time taken to process each file. 6. Provide a log file that records all operations performed by the application including timestamps, file paths, and any errors encountered. 7. Allow users to batch process multiple files at once, ensuring that each file is processed independently. 8. Incorporate a help section within the application that explains the importance of removing metadata and provides tips on privacy and security. Suggested Features: - Support for different versions of Microsoft Office file formats. - A preview mode that shows the metadata before and after removal without saving changes. - Integration with cloud storage services for direct processing of files stored online. - User-friendly notifications and progress bars during the file processing phase. How 'DMeta' Package is Utilized: - Use 'DMeta.remove_metadata(file_path)' to strip metadata from a single file. - The package also offers 'DMeta.get_metadata(file_path)' to retrieve metadata for informational purposes. - Ensure the application leverages these functions to provide a seamless user experience while maintaining data integrity.