AI Analysis
Final verdict: SUSPICIOUS
The package exhibits a moderate level of risk due to its network activity, which could potentially be exploited for unauthorized access if not securely implemented.
- Network risk at 6/10 due to observed interactions with external services.
- No evidence of shell execution, obfuscation, or credential harvesting.
Per-check LLM notes
- Network: The observed network calls suggest interaction with a web service which is common but may indicate unauthorized access attempts if not properly secured.
- Shell: No shell execution patterns detected.
- Obfuscation: No obfuscation patterns detected, indicating low risk.
- Credentials: No credential harvesting patterns detected, indicating low risk.
Heuristic Checks
Outbound Network Calls
score 9.0
Found 6 network call pattern(s)
""" page = requests.get(url, impersonate="chrome131", cookies=login_cookies)s :) loginPage = requests.get('https://docln.sbs/login', impersonate="chrome131")ber"] response = requests.post('https://docln.sbs/login', impersonate="chrome131", data=fortus)) response = requests.post('https://docln.sbs/action/series/store', impersonate="chromekies) response = requests.post('https://docln.sbs/action/series/update', impersonate="chrom} response = requests.post('https://docln.sbs/action/series/update', impersonate="chrom
Code Obfuscation
No obfuscation patterns detected
Shell / Subprocess Execution
No shell execution patterns detected
Credential Harvesting
No credential harvesting patterns detected
Typosquatting
No typosquatting candidates detected
Registered Email Domain
Email domain looks legitimate: proton.me>
Suspicious Page Links
All external links appear legitimate
Git Repository History
score 2.5
Git history flags: Repository has zero stars and zero forks
Repository has zero stars and zero forks
Maintainer History
score 8.0
4 maintainer concern(s) found
Only one version has ever been released — brand new packageAuthor name is missing or very shortAuthor "" appears to have only 1 package on PyPI (new or inactive account)Package has no PyPI classifiers (low effort / metadata quality)
Known CVE Vulnerabilities
No known vulnerabilities found in OSV database.
AI App Starter Prompt
Use this prompt to build a project with DocLN-API
Your task is to develop a simple yet powerful desktop application using Python that allows users to manage their documents stored on DocLN.sbs. This application will leverage the 'DocLN-API' library to interact seamlessly with the DocLN.sbs service. Here are the key functionalities your app should support: 1. **User Authentication**: Implement a login feature where users can authenticate themselves with their DocLN.sbs credentials. Utilize the 'DocLN-API' package to handle authentication requests and token management. 2. **Document Management**: Enable users to view, upload, download, and delete documents from their DocLN.sbs account. Use the 'DocLN-API' methods for these operations to ensure data consistency and security. 3. **Search Functionality**: Provide a search bar within the application where users can search for specific documents based on keywords or tags. The search should query the 'DocLN-API' to retrieve relevant documents. 4. **Document Sharing**: Allow users to share documents directly from the application with other DocLN.sbs users. This involves generating sharing links and managing permissions through the 'DocLN-API'. 5. **Notification System**: Integrate a basic notification system that alerts users about new document uploads, comments, or shares related to their documents. Notifications should be fetched periodically from the 'DocLN-API'. For the development process, consider using a modern Python GUI framework like PyQt or Tkinter for the frontend. Ensure your application is user-friendly, responsive, and secure. Additionally, write comprehensive documentation explaining how each feature works and how it interacts with the 'DocLN-API' library.