Houmao

v1.0.0 suspicious
5.0
Medium Risk

Framework and CLI toolkit for orchestrating teams of loosely-coupled AI agents

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package has a moderate risk score due to incomplete author metadata and a suspicious email domain, along with a potentially benign but unverified shell execution pattern.

  • Incomplete author metadata
  • Suspicious email domain
  • Potential benign but unverified shell execution
Per-check LLM notes
  • Network: No network calls were detected, which is low risk.
  • Shell: The shell execution pattern detected seems to be checking the version of an executable, which could be benign if part of the package's functionality, but requires further investigation into the package's documentation and source code.
  • Obfuscation: No obfuscation patterns detected, indicating low risk.
  • Credentials: No credential harvesting patterns detected, indicating low risk.
  • Metadata: The author's information is incomplete and the email domain is suspiciously short, indicating potential unreliability.

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution score 2.0

Found 1 shell execution pattern(s)

  • try: completed = subprocess.run( [executable, "--version"], check=Tr
Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain score 3.0

Suspicious email domain flags: Very short email domain: xx.com>

  • Very short email domain: xx.com>
Suspicious Page Links

All external links appear legitimate

Git Repository History

Repository igamenovoer/houmao appears legitimate

Maintainer History score 4.0

2 maintainer concern(s) found

  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with Houmao 
Create a collaborative storytelling platform using the 'Houmao' package. This platform will allow multiple users to contribute to a single story, with each user playing the role of a different character or narrator. The application should have the following features:

1. User Registration and Login: Users must be able to register and log in to the platform.
2. Character Selection: Each user selects a character from a predefined list of characters that they will represent throughout the story.
3. Story Generation: Using the 'Houmao' framework, the application will orchestrate interactions between different AI agents representing each character. These AI agents will generate narrative content based on the actions and decisions of the human users.
4. Real-time Collaboration: Users should be able to see other users' contributions in real time and respond accordingly, creating a dynamic and evolving story.
5. Saving and Sharing Stories: Completed stories should be saved and shared via social media platforms or email.
6. Analytics Dashboard: Provide a simple analytics dashboard for admins to monitor engagement levels, most active users, and popular story themes.

The 'Houmao' package will be utilized to manage the interactions between the AI agents and users, ensuring that the story flows logically and cohesively despite being contributed to by multiple parties. The package's CLI toolkit will also be used to streamline the setup and deployment process of the application.