AI Analysis
Final verdict: SUSPICIOUS
The package has some concerning elements such as shell command execution and potential credential harvesting, but lacks evidence of malicious intent or supply-chain attack indicators.
- Shell risk due to os.system(cmd)
- Potential credential risk needing further investigation
Per-check LLM notes
- Network: No network calls detected, which is normal and expected.
- Shell: The presence of os.system(cmd) suggests potential execution of arbitrary commands, which could be risky if not properly sanitized or controlled.
- Obfuscation: No obfuscation patterns detected in the package.
- Credentials: The detected patterns may indicate potential credential harvesting activities, requiring further investigation to confirm legitimacy.
- Metadata: The package shows no signs of typosquatting, suspicious links, or email domain flags. The maintainer has only one package, which may indicate a new or less active account.
Heuristic Checks
Outbound Network Calls
No suspicious network call patterns found
Code Obfuscation
No obfuscation patterns detected
Shell / Subprocess Execution
score 2.0
Found 1 shell execution pattern(s)
}" print(cmd) os.system(cmd) setuptools_build_py.run(self) CMDCLASS = {"bu
Credential Harvesting
score 2.5
Found 1 credential access pattern(s)
.m", '"foo.m"', '"foo.wl"', '"/etc/hosts"', r"C:\WINDOWS.SYS"): check_pattern(FILENAME_PATTE
Typosquatting
No typosquatting candidates detected
Registered Email Domain
No author email provided
Suspicious Page Links
All external links appear legitimate
Git Repository History
No GitHub repository linked
No GitHub repository link found
Maintainer History
score 2.0
1 maintainer concern(s) found
Author "Mathics3 Group" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities
No known vulnerabilities found in OSV database.
AI App Starter Prompt
Use this prompt to build a project with Mathics3-Scanner
Build a simple Python application using the Mathics3-Scanner package to demonstrate its core features.