Procpath

v1.15.0 safe
3.0
Low Risk

Procpath is a process tree analysis workbench

🤖 AI Analysis

Final verdict: SAFE

The package Procpath v1.15.0 appears to be safe with no significant risks identified. The network and metadata risks are minor and do not suggest any malicious intent.

  • Low network and shell execution risks
  • No obfuscation or credential harvesting detected
  • Single package from maintainer
Per-check LLM notes
  • Network: The network calls to localhost suggest internal testing or local database access, which is not inherently risky but should be verified against the package's intended functionality.
  • Shell: The shell executions appear to be part of test cases for verifying command-line interface behavior and timing, which is common in CLI tool testing.
  • Obfuscation: No obfuscation patterns detected, indicating low risk.
  • Credentials: No credential harvesting patterns detected, indicating low risk.
  • Metadata: The maintainer has only one package, which could indicate a new or less active account, but no other red flags are present.

🔬 Heuristic Checks

Outbound Network Calls score 6.0

Found 4 network call pattern(s)

  • ) response = urllib.request.urlopen('http://localhost:18000/') self.asse
  • ') response = urllib.request.urlopen('http://localhost:18000/db.sqlite')
  • 000)) response = urllib.request.urlopen('http://localhost:18000/') self.assertEq
  • ol']) response = urllib.request.urlopen('http://localhost:18000/db.sqlite') self
Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution score 10.0

Found 6 shell execution pattern(s)

  • ess_exists(self): p = subprocess.Popen(['sleep', '0.05']) self.addCleanup(p.terminate)
  • p.wait(1) p = subprocess.run('true & echo $!', stdout=subprocess.PIPE, shell=True)
  • def test_cli(self): subprocess.check_output( [sys.executable, '-m', 'procpath', 'query', '$.
  • test_cli_help(self): subprocess.check_output( [sys.executable, '-m', 'procpath', 'plot', '--h
  • essError) as ctx: subprocess.check_output( [sys.executable, '-m', 'procpath'], stderr=
  • essError) as ctx: subprocess.check_output( [sys.executable, '-m', 'procpath', 'query',
Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

Email domain looks legitimate: saaj.me

Suspicious Page Links

All external links appear legitimate

Git Repository History

No GitHub repository linked

  • No GitHub repository link found
Maintainer History score 2.0

1 maintainer concern(s) found

  • Author "saaj" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with Procpath 
Create a process monitoring utility using Python's 'Procpath' package. This utility will serve as a real-time monitor of processes running on a Linux system, providing insights into the health and performance of these processes. The utility should be able to display a hierarchical view of all running processes, showing parent-child relationships clearly. Additionally, it should offer the ability to filter processes based on various criteria such as CPU usage, memory usage, and process name.

Key Features:
- Display a live, hierarchical process tree.
- Filter processes based on CPU and memory usage thresholds.
- Highlight processes that exceed specified resource usage limits.
- Provide options to sort processes by different metrics (e.g., CPU usage, memory usage).
- Include a feature to kill selected processes from within the utility.

How to Utilize 'Procpath':
- Use 'Procpath' to analyze and visualize the process tree structure in real time.
- Implement its core functionalities to dynamically update the displayed process information.
- Leverage 'Procpath' for filtering and sorting processes according to user-defined criteria.
- Integrate 'Procpath' methods to manage and manipulate processes directly from your utility.