Package Metadata

Author: joke2k
Email: [email protected]
PyPI: Faker
Python: >=3.10
Versions: 483 releases
First release: 23 Dec 2010, 20:57 UTC
Analysed: 05 Jun 2026, 13:26 UTC
Source files: 62 .py files scanned

Project Links

Bug Tracker Changes Documentation Homepage Source Code

Classifiers

Development Status :: 5 - Production/StableEnvironment :: ConsoleIntended Audience :: DevelopersLicense :: OSI Approved :: MIT LicenseProgramming Language :: Python :: 3.10Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13Programming Language :: Python :: 3.14Programming Language :: Python :: Implementation :: CPython

🤖 AI Analysis

Final verdict: SAFE

The Faker package has minimal risks associated with network, shell execution, obfuscation, and credential harvesting. The metadata risk is slightly elevated due to non-secure links, but this alone does not indicate malicious intent or supply-chain attack.

Minimal network and shell execution risks
No signs of obfuscation or credential harvesting
Elevated metadata risk due to non-secure links

Per-check LLM notes

Network: No network calls are expected from Faker as it is primarily used for generating fake data locally.
Shell: No shell executions are expected from Faker as it does not require system-level operations.
Obfuscation: No obfuscation patterns detected, indicating low risk.
Credentials: No credential harvesting patterns detected, indicating low risk.
Metadata: The presence of non-secure links is concerning, but there are no other significant red flags.

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

✓ Code Obfuscation

No obfuscation patterns detected

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

⚠ Typosquatting score 3.0

Possible typosquat of: flake8

"Faker" is 2 edit(s) from "flake8"

✓ Registered Email Domain

Email domain looks legitimate: gmail.com

⚠ Suspicious Page Links score 8.0

Found 4 suspicious link(s) on the package page

Non-HTTPS external link: http://www.cupcakeipsum.com/
Non-HTTPS external link: http://search.cpan.org/~jasonk/Data-Faker-0.07/
Non-HTTPS external link: http://www.buildout.org/
Non-HTTPS external link: http://faker.rtfd.org/

✓ Git Repository History

Repository joke2k/faker appears legitimate

⚠ Maintainer History score 2.0

1 maintainer concern(s) found

Author "joke2k" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with Faker

Create a personal data generator mini-application using Python's Faker package. This application should allow users to generate realistic but fake personal data for testing purposes. The app should have a simple command-line interface where users can specify the type of data they need and how many entries they want to generate. Here’s a detailed breakdown of the requirements:

1. **User Input**: Prompt the user to choose from different categories of personal data such as names, addresses, emails, phone numbers, and social security numbers.
2. **Data Generation**: Use Faker to generate the specified type of data. Ensure that the data generated is realistic and diverse enough to be useful for testing.
3. **Output Options**: Allow the user to output the generated data either to the console or save it into a CSV file for later use.
4. **Customization**: Provide options for customization within each category. For example, for email generation, allow users to specify a domain name; for address generation, include options for city, state, and country.
5. **Help and Documentation**: Include a help menu that explains how to use the application and what options are available.

This project will showcase your ability to integrate external packages, handle user input, and manage data output efficiently.