PyGeopack

v1.3.0 suspicious
4.0
Medium Risk

Geopack08 wrapper for Python

πŸ€– AI Analysis

Final verdict: SUSPICIOUS

The package is generally safe but exhibits a high shell risk due to the use of os.system for executing shell commands, which could pose security risks if not properly controlled.

  • High shell risk due to os.system usage
  • Minor metadata issues
Per-check LLM notes
  • Network: No network calls were detected.
  • Shell: The use of os.system to execute shell commands suggests potential risks, especially if these commands are not well-defined and could lead to unintended operations.
  • Obfuscation: No obfuscation patterns detected, indicating low risk of malicious obfuscation.
  • Credentials: No credential harvesting patterns detected, indicating low risk of malicious activity related to secret harvesting.
  • Metadata: The package shows some minor red flags but no clear signs of malicious intent or typosquatting.

πŸ”¬ Heuristic Checks

βœ“ Outbound Network Calls

No suspicious network call patterns found

βœ“ Code Obfuscation

No obfuscation patterns detected

⚠ Shell / Subprocess Execution score 10.0

Found 5 shell execution pattern(s)

  • tab'.format(Year))): ret = os.system(cmd0.format(Year,Year)) if ret == 0: #extract file
  • t == 0: #extract file os.system(cmd1.format(Year)) #delete archive os.system(cmd2.fo
  • ear)) #delete archive os.system(cmd2.format(Year)) #rename tab os.system(cmd3.forma
  • t(Year)) #rename tab os.system(cmd3.format(Year,Year)) files.append(OutPath+'{:04}.tab'
  • ) else: #stop loop os.system(cmd2.format(Year)) Cont = False Year += 1 from .FreeP
βœ“ Credential Harvesting

No credential harvesting patterns detected

βœ“ Typosquatting

No typosquatting candidates detected

βœ“ Registered Email Domain

Email domain looks legitimate: gmail.com>

⚠ Suspicious Page Links score 2.0

Found 1 suspicious link(s) on the package page

  • Non-HTTPS external link: http://geo.phys.spbu.ru/~tsyganenko/modeling.html
βœ“ Git Repository History

Repository mattkjames7/PyGeopack appears legitimate

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)
βœ“ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

πŸ’‘ AI App Starter Prompt

Use this prompt to build a project with PyGeopack 
Your task is to develop a Python-based mini-application that leverages the 'PyGeopack' library to calculate and visualize magnetic field lines in Earth's magnetosphere. This application will be both educational and useful for researchers interested in geomagnetic studies. Here’s a detailed breakdown of the project requirements:

1. **Project Scope**: Your application should allow users to input specific geographic coordinates (latitude, longitude, and altitude) and date/time to simulate the geomagnetic field at those points using the Geopack08 model wrapped by 'PyGeopack'.
2. **Features**:
   - User Interface: Develop a simple command-line interface (CLI) or a basic graphical user interface (GUI) using Tkinter.
   - Data Input: Allow users to input latitude, longitude, altitude, and date/time.
   - Calculation Engine: Utilize 'PyGeopack' to calculate the magnetic field components (Bx, By, Bz) at the specified location and time.
   - Visualization: Implement a feature to plot the magnetic field vector on a 3D graph. Use matplotlib or a similar library for visualization.
   - Documentation: Include a brief documentation file explaining how to use the application and what each component does.
3. **Implementation Steps**:
   - Install 'PyGeopack' and any other necessary libraries.
   - Create a function to handle user inputs.
   - Write a function to call 'PyGeopack' for calculating magnetic field values.
   - Develop a plotting function to visualize the results.
   - Integrate all components into a cohesive application.
4. **Expected Outcome**: A fully functional application that takes geographic and temporal data as input, calculates the magnetic field at those points, and displays the results both numerically and visually. The application should be well-documented and easy to run.
5. **Additional Considerations**:
   - Ensure your application handles invalid inputs gracefully.
   - Provide default values for testing purposes.
   - Make sure your code is clean, well-commented, and follows best practices.