Package Metadata

Author: Gavin Bannerman
Email: [email protected]
PyPI: Mopidy-Pibox
Python: >=3.9
Versions: 58 releases
First release: 12 Jan 2018, 10:45 UTC
Analysed: 05 Jun 2026, 16:37 UTC
Source files: 14 .py files scanned

Project Links

Classifiers

Environment :: No Input/Output (Daemon)Intended Audience :: End Users/DesktopLicense :: OSI Approved :: Apache Software LicenseOperating System :: OS IndependentProgramming Language :: Python :: 3Programming Language :: Python :: 3.10Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.9Topic :: Multimedia :: Sound/Audio :: Players

🤖 AI Analysis

Final verdict: SAFE

The package shows minimal risk indicators with no network calls, shell executions, obfuscations, or credential harvesting attempts detected. The metadata risk is slightly elevated due to the maintainer having only one package, but this alone does not suggest a supply-chain attack.

No network calls
Single package by maintainer

Per-check LLM notes

Network: No network calls detected, which is normal unless the package requires external services.
Shell: No shell execution patterns detected, indicating no immediate signs of malicious activity.
Obfuscation: No obfuscation patterns detected, indicating low risk of malicious activity.
Credentials: No credential harvesting patterns detected, indicating low risk of secret theft.
Metadata: The maintainer has only one package, which may indicate a new or less active account, but no other red flags are present.

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

✓ Code Obfuscation

No obfuscation patterns detected

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: gavinb.site

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository gbannerman/mopidy-pibox appears legitimate

⚠ Maintainer History score 2.0

1 maintainer concern(s) found

Author "Gavin Bannerman" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with Mopidy-Pibox

Create a fully-functional mini-app that serves as a modern digital jukebox using the 'Mopidy-Pibox' package in Python. This app will allow users to browse, select, and play music tracks from a local library or streaming services. Here’s a step-by-step guide on how to build it:

1. **Setup Environment**: Start by setting up your development environment. Install Python and ensure you have pip installed. Then, install Mopidy and Mopidy-Pibox via pip.
2. **Application Structure**: Design the basic structure of your application. It should include a main module to handle user interactions and a backend module to interface with Mopidy-Pibox.
3. **User Interface**: Develop a simple but intuitive user interface where users can search for songs, albums, artists, and playlists. Consider integrating a web framework like Flask or Django to create a web-based interface.
4. **Integration with Mopidy-Pibox**: Use Mopidy-Pibox to manage the jukebox functionality. This includes adding songs to a queue, playing/pausing, skipping tracks, and managing playlists.
5. **Advanced Features**: Implement advanced features such as allowing users to vote on songs, setting up a playlist recommendation system based on user preferences, and providing analytics on song popularity.
6. **Testing & Deployment**: Thoroughly test your application to ensure all functionalities work as expected. Once tested, deploy your application to a server or a cloud platform.
7. **Documentation**: Write comprehensive documentation for both users and developers, explaining how to use the application and how to contribute to its source code.

Throughout the process, focus on making your application user-friendly and efficient, ensuring it leverages the full potential of Mopidy-Pibox.