OpenVCAD

v2.3.8 suspicious
4.0
Medium Risk

Python bindings for OpenVCAD (pyvcad, pyvcad_compilers, pyvcad_rendering)

⚠ Tarball exceeded 25 MB — source code analysis was limited to package metadata only.

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package exhibits low risks in terms of network usage, shell execution, and obfuscation. However, concerns arise from the metadata quality and maintainer activity, suggesting potential issues that could indicate a supply-chain attack or other security problems.

  • Low maintainer activity
  • Poor metadata quality
Per-check LLM notes
  • Network: No network calls detected, which is normal if the package does not require internet access.
  • Shell: No shell execution patterns detected, indicating no immediate signs of malicious activities like command execution.
  • Obfuscation: No obfuscation patterns detected, indicating low risk.
  • Credentials: No credential harvesting patterns detected, indicating low risk.
  • Metadata: The package shows signs of low maintainer activity and poor metadata quality, raising concerns but not definitive evidence of malicious intent.

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution

No shell execution patterns detected

Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

Email domain looks legitimate: colorado.edu>

Suspicious Page Links

All external links appear legitimate

Git Repository History

No GitHub repository linked

  • No GitHub repository link found
Maintainer History score 6.0

3 maintainer concern(s) found

  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)
  • Package has no PyPI classifiers (low effort / metadata quality)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with OpenVCAD 
Develop a 3D CAD modeler mini-application using the 'OpenVCAD' package in Python. This application will allow users to create, modify, and visualize 3D models directly from their web browser. Here’s a detailed breakdown of the application's functionality:

1. **User Interface**: Design a simple yet intuitive user interface using HTML/CSS/JavaScript for front-end, and Flask/Django for back-end integration.
2. **Model Creation**: Implement basic 3D modeling tools such as extrusion, rotation, scaling, and Boolean operations (union, intersection, difference).
3. **Visualization**: Utilize 'pyvcad_rendering' from 'OpenVCAD' to render the 3D models in real-time on the user interface.
4. **Persistence**: Allow users to save their models locally or remotely using 'pyvcad' and 'pyvcad_compilers' functionalities.
5. **Interactive Features**: Enable interactive features like zooming, panning, and rotating the view around the 3D model.
6. **Customization**: Permit users to customize their models with textures and colors.
7. **Export Options**: Provide options to export the final 3D models in various formats supported by 'OpenVCAD', such as STL, OBJ, and STEP.

The application should leverage 'OpenVCAD' for its robust 3D modeling capabilities and rendering efficiency. Ensure that the integration between the front-end and back-end is seamless, allowing for real-time updates as users interact with the 3D models.