Uranus-IDE

v3.3.1a35 suspicious
4.0
Medium Risk

A lightweight, extensible Python IDE inspired by Jupyter, built with PyQt5.

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package shows signs of potential risks, primarily due to shell execution capabilities and the author's new account without PyPI classifiers.

  • Shell risk due to detection of potential command execution
  • New author account with no PyPI classifiers
Per-check LLM notes
  • Network: No network calls detected, indicating low risk.
  • Shell: Detection of shell execution suggests potential for executing arbitrary commands, which could be risky if not properly controlled.
  • Obfuscation: The use of base64 encoding for image data is likely for legitimate purposes such as storing and loading images.
  • Credentials: No suspicious patterns indicating credential harvesting were detected.
  • Metadata: Low risk but requires further investigation due to the author's new account and lack of PyPI classifiers.

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation score 4.0

Found 2 obfuscation pattern(s)

  • raw_bytes = base64.b64decode(base64_data) pixmap.loadFromData(raw_by
  • pixmap.loadFromData(base64.b64decode(base64_data)) self.image_label.setPixmap(pixmap)
Shell / Subprocess Execution score 10.0

Found 6 shell execution pattern(s)

  • try: result = subprocess.run(cmd, capture_output=True, text=True) self.edito
  • temp_file}"' subprocess.Popen(cmd, shell=True) elif sys.platform.startswith("li
  • "' subprocess.Popen(cmd, shell=True) elif sys.platform == "darwin":
  • ''' subprocess.Popen(["osascript", "-e", apple_script]) else:
  • "{temp_file}""' subprocess.Popen(cmd, shell=True) elif sys.platform.startswith("li
  • }\'; exec bash"' subprocess.Popen(cmd, shell=True) elif sys.platform == "darwin":
Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

Email domain looks legitimate: gmail.com>

Suspicious Page Links

All external links appear legitimate

Git Repository History

Repository atila-gh/Uranus-IDE appears legitimate

Maintainer History score 4.0

2 maintainer concern(s) found

  • Author "Atila Ghashghaie | آتیلا قشقایی" appears to have only 1 package on PyPI (new or inactive account)
  • Package has no PyPI classifiers (low effort / metadata quality)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with Uranus-IDE 
Create a Python-based educational tool called 'CodeMentor' using the Uranus-IDE package. This application will serve as an interactive learning platform where users can write, run, and debug Python code within a user-friendly interface. The goal is to make coding more accessible and engaging for beginners. Here’s how you can develop it:

1. **Setup**: Begin by installing the Uranus-IDE package in your Python environment. Make sure to familiarize yourself with its basic functionalities such as opening a new file, running code snippets, and handling errors.
2. **User Interface**: Design a clean and intuitive UI using PyQt5 components. Include a code editor area where users can write their Python code, a console area to display outputs, and a sidebar for navigation and additional tools.
3. **Core Features**:
   - **Interactive Coding**: Enable users to execute Python code directly from the editor. Implement a feature that highlights syntax errors and provides suggestions for corrections.
   - **Learning Modules**: Integrate pre-written Python modules that cover basic concepts like loops, conditionals, functions, etc. Each module should have examples, quizzes, and interactive exercises.
   - **Code Snippets**: Provide a library of common code snippets that users can insert into their projects with just a few clicks.
4. **Advanced Tools**:
   - **Debugging Tool**: Implement a simple debugger that allows users to set breakpoints, step through code, and inspect variables during execution.
   - **Help Documentation**: Embed links to Python documentation and tutorials directly within the app for quick reference.
5. **User Experience Enhancements**:
   - **Customization Options**: Allow users to customize the appearance of the editor, such as changing themes and font sizes.
   - **Saving and Sharing**: Enable users to save their work locally or share their projects via cloud services.
6. **Testing and Deployment**: Before deploying, thoroughly test the application for bugs and usability issues. Consider packaging it as a standalone executable using PyInstaller or similar tools for easy distribution.

By leveraging the Uranus-IDE package, you'll be able to focus on adding unique educational features rather than building the underlying IDE functionality from scratch. This project not only helps beginners learn Python but also showcases the power of Python packages in developing sophisticated applications.