Package Metadata

Author: —
Email: Peter Pfeufer <[email protected]>
PyPI: aa-srp
Python: <3.14,>=3.10
Versions: 131 releases
First release: 28 Dec 2020, 13:26 UTC
Analysed: 05 Jun 2026, 23:27 UTC
Source files: 61 .py files scanned

Project Links

Changelog Codecov Discord Documentation Donation GitHub Tracker Translation

Classifiers

Environment :: Web EnvironmentFramework :: DjangoFramework :: Django :: 4.2Framework :: Django :: 5.2Intended Audience :: DevelopersLicense :: OSI Approved :: GNU General Public License v3 (GPLv3)Operating System :: OS IndependentProgramming Language :: PythonProgramming Language :: Python :: 3 :: OnlyProgramming Language :: Python :: 3.10

🤖 AI Analysis

Final verdict: SAFE

The package has a low risk score due to minimal concerns regarding network interactions and incomplete maintainer metadata. There are no indications of malicious activities.

Network interactions present but within normal range
Incomplete maintainer metadata

Per-check LLM notes

Network: The presence of network calls suggests the package interacts with external services, which is common but requires scrutiny to ensure it's not misusing user data.
Shell: No shell execution patterns detected, indicating no immediate risk from command execution.
Obfuscation: No obfuscation patterns detected, indicating low risk.
Credentials: No credential harvesting patterns detected, indicating low risk.
Metadata: The maintainer's author information is incomplete and may indicate a new or less active account, but there are no other red flags.

🔬 Heuristic Checks

⚠ Outbound Network Calls score 1.5

Found 1 network call pattern(s)

try: response = requests.get( url=killmail_api_url, heade

✓ Code Obfuscation

No obfuscation patterns detected

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: ppfeufer.de>

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository ppfeufer/aa-srp appears legitimate

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with aa-srp

Create a mini-application called 'AllianceAuthenticator' that leverages the 'aa-srp' Python package to securely authenticate users into an Alliance Auth server. This application will serve as a bridge between users and the server, ensuring secure communication and authentication processes. Here’s a detailed breakdown of what the application should achieve:

1. **User Registration**: Allow new users to register on the application by providing their username and password. The application should use the 'aa-srp' package to securely store user credentials using the Secure Remote Password (SRP) protocol.
2. **Login Mechanism**: Implement a login feature where users can enter their credentials. The application should use 'aa-srp' to validate the entered credentials against the stored ones without directly comparing passwords, ensuring security.
3. **Session Management**: Once authenticated, the application should manage sessions for each user. Users should be able to log out and the application should invalidate their session upon logout.
4. **Forgot Password Feature**: Provide a mechanism for users to reset their password if they forget it. This process should also utilize 'aa-srp' to ensure that the password reset is done securely.
5. **Security Enhancements**: Ensure that all data transmitted between the client and the server is encrypted. Use HTTPS for secure connections.
6. **User Interface**: Develop a simple yet effective web interface using Flask for the frontend, making it user-friendly and accessible.
7. **Documentation**: Write comprehensive documentation detailing how to install and use the application, including setup instructions and examples of API usage.

By following these steps, you'll create a robust, secure, and user-friendly mini-application that integrates seamlessly with Alliance Auth servers using the 'aa-srp' package.