AI Analysis
Final verdict: SUSPICIOUS
The package has minimal risks associated with network calls, shell execution, obfuscation, and credential harvesting. However, the metadata quality and maintainer activity levels raise concerns, suggesting potential issues with the package's maintenance and reliability.
- Low maintainer activity
- Poor metadata quality
Per-check LLM notes
- Network: No network calls suggest normal behavior for a package focused on local operations.
- Shell: No shell execution suggests the package is not performing system-level actions that could indicate malicious intent.
- Obfuscation: No obfuscation patterns detected, indicating low risk.
- Credentials: No credential harvesting patterns detected, indicating low risk.
- Metadata: The package shows signs of low maintainer activity and poor metadata quality, which could indicate potential risks.
Heuristic Checks
Outbound Network Calls
No suspicious network call patterns found
Code Obfuscation
No obfuscation patterns detected
Shell / Subprocess Execution
No shell execution patterns detected
Credential Harvesting
No credential harvesting patterns detected
Typosquatting
No typosquatting candidates detected
Registered Email Domain
No author email provided
Suspicious Page Links
All external links appear legitimate
Git Repository History
No GitHub repository linked
No GitHub repository link found
Maintainer History
score 8.0
4 maintainer concern(s) found
Only one version has ever been released — brand new packageAuthor name is missing or very shortAuthor "" appears to have only 1 package on PyPI (new or inactive account)Package has no PyPI classifiers (low effort / metadata quality)
Known CVE Vulnerabilities
No known vulnerabilities found in OSV database.
AI App Starter Prompt
Use this prompt to build a project with ScreenSubtitleReader
构建一个名为 'SubtitleVoiceAssistant' 的小应用程序,该应用使用Python包'ScreenSubtitleReader'来自动识别并朗读当前播放视频的字幕。该项目旨在为视力障碍用户提供便利,帮助他们更好地享受视频内容。 项目功能包括: 1. 实时监控屏幕上的视频播放,并自动检测是否有字幕出现。 2. 使用'ScreenSubtitleReader'包来识别字幕文本。 3. 将识别到的字幕文本转换为语音输出。 4. 提供设置选项,允许用户选择不同的语音合成器和调整朗读速度。 5. 支持多种语言的字幕识别与语音输出。 6. 允许用户自定义热键来启动或暂停字幕朗读功能。 7. 提供用户界面,让用户可以轻松地启用或禁用功能,以及查看当前设置。 请详细描述如何实现上述功能,包括技术选型、代码结构设计等,并提供关键代码示例。