AI Analysis
Final verdict: SUSPICIOUS
The package shows low risk for common issues like network abuse, shell execution, or credential theft but has suspicious metadata with external links that may lead to unknown destinations and lacks a public GitHub repository, which raises concerns about its origin and maintenance.
- Suspicious links in documentation
- Lack of a public GitHub repository
Per-check LLM notes
- Network: No network calls detected, which is normal unless the package's functionality requires it.
- Shell: No shell execution patterns detected, indicating no immediate risk from command execution.
- Obfuscation: No obfuscation patterns detected, indicating low risk.
- Credentials: No credential harvesting patterns detected, indicating low risk.
- Metadata: Suspicious links and lack of GitHub repository suggest potential risks.
Heuristic Checks
Outbound Network Calls
No suspicious network call patterns found
Code Obfuscation
No obfuscation patterns detected
Shell / Subprocess Execution
No shell execution patterns detected
Credential Harvesting
No credential harvesting patterns detected
Typosquatting
No typosquatting candidates detected
Registered Email Domain
score 3.0
Suspicious email domain flags: Very short email domain: qq.com
Very short email domain: qq.com
Suspicious Page Links
score 4.0
Found 2 suspicious link(s) on the package page
Non-HTTPS external link: http://DrissionPage.cn/DrissionGet/Non-HTTPS external link: http://g1879.gitee.io/drissionpagedocs/imgs/code.jpg
Git Repository History
No GitHub repository linked
No GitHub repository link found
Maintainer History
score 2.0
1 maintainer concern(s) found
Author "g1879" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities
No known vulnerabilities found in OSV database.
AI App Starter Prompt
Use this prompt to build a project with DrissionGet
构建一个名为'Multi-Threaded Downloader'的小型应用程序,该应用利用Python包'DrissionGet'来实现多线程文件下载。此应用程序应具备以下功能: 1. 用户可以输入或粘贴一个包含多个下载链接的文本文件。 2. 应用程序能够解析这些链接,并使用DrissionGet的多线程功能同时下载这些文件。 3. 提供进度条显示每个文件的下载状态。 4. 支持断点续传,如果下载过程中出现中断,可以在恢复时从上次中断的地方继续下载。 5. 允许用户设置下载线程的数量,以根据其网络条件和偏好调整下载速度。 6. 下载完成后,提供一个日志文件,记录每个文件的下载详情,包括开始时间、结束时间和总耗时。 7. 界面友好,易于操作。 请详细描述如何使用DrissionGet实现上述功能,并提供代码示例。