NeonBunny

v1.6.5 suspicious
6.0
Medium Risk

A Life program by tderk, originally LPro.py and Destiny [2024]

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package exhibits moderate risks due to potential network and shell execution vulnerabilities, as well as obfuscation techniques that might conceal malicious behavior. However, there is no concrete evidence of credential theft or high-level security breaches.

  • High shell execution risk
  • Moderate network risk
  • Significant obfuscation
Per-check LLM notes
  • Network: Network calls to external URLs could indicate legitimate functionality but may also be used for unexpected purposes.
  • Shell: Executing commands based on the OS can be risky, especially when opening URLs directly via system calls, potentially leading to security vulnerabilities.
  • Obfuscation: The use of obscure variable names and encoding patterns suggests an attempt to obfuscate the code, possibly to hide its functionality or evade detection.
  • Credentials: No clear patterns indicating credential harvesting were detected.
  • Metadata: The package shows signs of low maintainer activity and metadata quality, raising concerns but not definitive proof of malicious intent.

🔬 Heuristic Checks

Outbound Network Calls score 9.0

Found 6 network call pattern(s)

  • ilable try: req = urllib.request.Request(PYPI_URL, headers={'User-Agent': 'Mozilla/5.0'})
  • 'Mozilla/5.0'}) with urllib.request.urlopen(req, timeout=5) as resp: data = json.loa
  • a/5.0'} try: with requests.get(url, headers=headers, timeout=30, stream=True, verify=False)
  • lts}" try: resp = requests.get(url, timeout=10) if resp.status_code == 200:
  • _plus(query)}" resp = requests.get(ddg_url, timeout=15, headers={'User-Agent': 'Mozilla/5.0'})
  • ults}" resp = requests.get(url, timeout=15) if resp.status_code == 200:
Code Obfuscation score 10.0

Found 6 obfuscation pattern(s)

  • red: try: __import__(dep) except ImportError: missing_req.append(
  • s(): try: __import__(dep) except ImportError: missing_opt.append(
  • s(): try: __import__(imp) except ImportError: missing.append(pkg)
  • mpy_deps: r = __import__('subprocess').run(['pipx', 'inject', pkg, dep], capture_output=True, text
  • mpy_deps: r = __import__('subprocess').run([__import__('sys').executable, '-m', 'pip', 'install',
  • __import__('subprocess').run([__import__('sys').executable, '-m', 'pip', 'install', '--user', dep], capture
Shell / Subprocess Execution score 10.0

Found 6 shell execution pattern(s)

  • nd cmd_exists('w3m'): os.system(f'w3m "{url}"') return system = get_system()
  • f system == 'Darwin': os.system(f'open "{url}"') return if system == 'Windows':
  • system == 'Windows': os.system(f'start "" "{url}"') return if is_android() and
  • s('termux-open'): os.system(f'termux-open "{url}"') else: os.system(
  • "') else: os.system(f'am start -a android.intent.action.VIEW -d "{url}"')
  • xists('wslview'): os.system(f'wslview "{url}" &') else: os.system('c
Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

Email domain looks legitimate: gmail.com>

Suspicious Page Links

All external links appear legitimate

Git Repository History

No GitHub repository linked

  • No GitHub repository link found
Maintainer History score 6.0

3 maintainer concern(s) found

  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)
  • Package has no PyPI classifiers (low effort / metadata quality)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with NeonBunny 
Your task is to develop a captivating mini-application using the Python package 'NeonBunny', which is a reimagined version of Conway's Game of Life. Your application will be called 'LifeExplorer'. It should allow users to interactively explore different patterns and rules within Conway's Game of Life, offering a dynamic and engaging experience.

**Core Features:**
1. **Pattern Generator**: Allow users to generate common Game of Life patterns such as Gliders, Oscillators, and Spaceships automatically. Users should also be able to manually create custom patterns.
2. **Rule Editor**: Provide an interface where users can adjust the rules governing cell survival and reproduction. This includes changing the number of neighbors required for a cell to survive, be born, or die.
3. **Simulation Speed Control**: Implement controls to adjust the speed of the simulation, allowing users to slow down or speed up the evolution of the patterns.
4. **Pattern Library**: Include a library of pre-defined patterns that users can load into the game board instantly.
5. **Save and Load Patterns**: Enable users to save their current pattern configurations and load them later.
6. **Visual Enhancements**: Offer options to customize the visual appearance of the cells, such as color schemes and grid visibility.
7. **Pattern Analysis**: Integrate a feature that analyzes the patterns for stability, periodicity, and complexity, providing insights to the user.

**How to Utilize 'NeonBunny':**
- Use the 'NeonBunny' package to handle the core logic of the Game of Life simulation, including pattern generation, rule application, and state updates.
- Leverage 'NeonBunny' functions to manage the game board, apply user-defined rules, and visualize the evolving patterns.
- Explore 'NeonBunny' documentation to understand its capabilities and limitations, ensuring your application makes full use of its features.

**Development Steps:**
1. Set up your development environment with Python and install the 'NeonBunny' package.
2. Design the user interface for generating and editing patterns.
3. Implement the rule editor functionality to allow customization of the Game of Life rules.
4. Develop the simulation engine that integrates 'NeonBunny' for running the Game of Life according to user-defined rules.
5. Add features for saving/loading patterns and enhancing the visual appearance.
6. Implement the pattern analysis feature to provide insights into the patterns.
7. Test your application thoroughly to ensure all features work as expected.
8. Document your code and write instructions for using 'LifeExplorer'.

Your goal is to create an intuitive and powerful tool that not only entertains but also educates users about the fascinating dynamics of Conway's Game of Life.