InteractiveHtmlBom

v2.11.2 suspicious
4.0
Medium Risk

Generate Interactive Html BOM for your electronics projects

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package has some signs of obfuscation and incomplete metadata, raising concerns about its origin and intent. While the risk is not high enough to label it as malicious, these indicators warrant further investigation.

  • Obfuscation risk
  • Incomplete metadata
Per-check LLM notes
  • Network: No network calls detected, indicating low risk of data exfiltration or C2 communication.
  • Shell: Shell execution is limited to Git version retrieval and file opening, which are generally benign actions but could indicate potential risks if used improperly.
  • Obfuscation: The observed patterns suggest an attempt to obscure code, which could be used for evasion but is not definitively malicious.
  • Credentials: No clear evidence of credential harvesting detected.
  • Metadata: The maintainer's author information is incomplete, suggesting potential low activity or a new account.

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation score 2.0

Found 1 obfuscation pattern(s)

  • os.path.basename(script_dir) __import__(__package__) # python 2 and 3 compatibility hack def to_utf(s): if
Shell / Subprocess Execution score 8.0

Found 4 shell execution pattern(s)

  • list[str]) -> str: return subprocess.check_output(cmd, stderr=subprocess.STDOUT, text=True).strip() def get_
  • try: git_version = subprocess.check_output( ['git', 'describe', '--tags', '--abbrev=4', '--
  • tswith('darwin'): subprocess.call(('open', filename)) elif sys.platform.startswith('li
  • rtswith('linux'): subprocess.call(('xdg-open', filename)) except Exception as e: l
Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

Email domain looks legitimate: gmail.com>

Suspicious Page Links

All external links appear legitimate

Git Repository History

Repository openscopeproject/InteractiveHtmlBom appears legitimate

Maintainer History score 4.0

2 maintainer concern(s) found

  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with InteractiveHtmlBom 
Create a web-based tool using Python and the 'InteractiveHtmlBom' package to manage and visualize Bill of Materials (BOMs) for electronic projects. This tool should allow users to input components, quantities, and descriptions for their electronic projects, then generate interactive HTML pages that display these components in an organized and user-friendly manner.

Steps to build the application:
1. Set up a basic Flask web framework to handle routing and request handling.
2. Integrate the 'InteractiveHtmlBom' package to facilitate the creation of interactive HTML BOMs from the input data.
3. Design a simple yet effective front-end interface using HTML, CSS, and possibly JavaScript to capture component details from users.
4. Implement backend functionality to process the form submissions, validate the inputs, and use the 'InteractiveHtmlBom' package to generate the corresponding HTML BOM.
5. Add a feature to save and load BOMs from a local database or file system for future reference.
6. Enhance the application by adding search capabilities within the BOMs, allowing users to filter components based on various criteria such as part number, manufacturer, or quantity.
7. Incorporate a feature to export the generated BOMs into different formats such as CSV or Excel for easy sharing and printing.
8. Ensure the application has error handling mechanisms to guide users through common mistakes and provide helpful feedback.
9. Test the application thoroughly to ensure it works as expected across different browsers and devices.

Features to include:
- User-friendly form for entering component information (part number, description, quantity, etc.).
- Real-time preview of the BOM being generated as the user enters data.
- Ability to save and load BOMs for future editing.
- Search and filtering options within the BOMs.
- Export functionality to convert BOMs into CSV or Excel files.
- Responsive design to ensure usability on mobile devices.