Package Metadata

Author: —
Email: Hasan Arda Eren <[email protected]>
PyPI: accountpilot
Python: >=3.11
Versions: 7 releases
First release: 03 May 2026, 01:09 UTC
Analysed: 06 Jun 2026, 01:12 UTC
Source files: 61 .py files scanned

Project Links

Classifiers

Development Status :: 3 - AlphaIntended Audience :: DevelopersIntended Audience :: End Users/DesktopLicense :: OSI Approved :: GNU Affero General Public License v3 or later (AGPLv3+)Operating System :: MacOS :: MacOS XOperating System :: POSIX :: LinuxProgramming Language :: Python :: 3Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package exhibits moderate risk due to its execution of system commands and network activities, which could potentially be exploited for unauthorized actions.

High shell risk due to system command execution
Moderate network risk from POST requests

Per-check LLM notes

Network: The use of POST requests and URL encoding is common but could be used for unauthorized data transmission if misused.
Shell: Executing system commands can be risky as it may lead to unintended actions or vulnerabilities, especially when interacting with system services like launchctl.
Obfuscation: Base64 decoding is commonly used for data transmission and storage but could indicate an attempt to hide code logic.
Credentials: No direct evidence of credential harvesting patterns was found.
Metadata: The repository's low activity and lack of maintainer details suggest potential risks, but there's no clear evidence of malicious intent.

🔬 Heuristic Checks

⚠ Outbound Network Calls score 3.0

Found 2 network call pattern(s)

wargs).encode() req = urllib.request.Request(token_uri, data=body, method="POST") # noqa: S310
orm-urlencoded") with urllib.request.urlopen(req, timeout=30) as resp: # noqa: S310

⚠ Code Obfuscation score 6.0

Found 3 obfuscation pattern(s)

"filename"]), content=base64.b64decode(item["content_b64"]), mime_type=item.get("mime_type"
_attributed_body( base64.b64decode(record["attributed_body_b64"]) ) svc_raw = reco
oup" cli_module = __import__(cli_module_name, fromlist=[group_name]) grp = getattr(cli_module, group_name, None)

⚠ Shell / Subprocess Execution score 10.0

Found 6 shell execution pattern(s)

try: result = subprocess.run( # noqa: S602 — intentional shell exec cmd,
tent — ignore exit code). subprocess.run( ["launchctl", "bootout", domain, str(plist_path)],
apture_output=True, ) subprocess.run( ["launchctl", "bootstrap", domain, str(plist_path)]
apture_output=True, ) subprocess.run( ["launchctl", "enable", f"{domain}/{label}"],
apture_output=True, ) subprocess.run( ["launchctl", "kickstart", f"{domain}/{label}"],
domain = f"gui/{uid}" subprocess.run( ["launchctl", "bootout", domain, str(plist_path)],

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: gmail.com>

✓ Suspicious Page Links

All external links appear legitimate

⚠ Git Repository History score 2.5

Git history flags: Repository has zero stars and zero forks

Repository has zero stars and zero forks

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with accountpilot

Create a personal account synchronization tool called 'SyncMaster' using the Python package 'accountpilot'. This tool will allow users to easily synchronize their email, iMessages, calendars, and other accounts across different devices or platforms. The application should include the following core functionalities:

1. User Authentication: Allow users to securely log in using their existing credentials from supported services like Gmail, iCloud, etc.
2. Account Synchronization: Automatically sync email, messages, and calendar events between different accounts. For instance, if a user adds a new event to their Google Calendar, it should also appear on their iCloud Calendar.
3. Notification System: Implement a notification system that alerts users when new emails, messages, or calendar events are added or updated in any of their synchronized accounts.
4. Customizable Sync Settings: Users should have the ability to customize which accounts and services they want to sync and set specific sync intervals (e.g., hourly, daily).
5. Backup and Restore: Provide functionality to backup and restore all synced data to prevent loss of information in case of device failure.
6. User Interface: Develop a simple and intuitive web-based UI using Flask or Django where users can manage their accounts, view notifications, and adjust settings.

To achieve these functionalities, utilize the 'accountpilot' package as follows:
- Use 'accountpilot' to handle the authentication process for various services.
- Leverage 'accountpilot' to establish connections and perform synchronization tasks between different accounts.
- Integrate 'accountpilot' into your application to monitor changes in real-time and trigger notifications accordingly.
- Explore 'accountpilot's features for backing up and restoring account data efficiently.

This project aims to streamline account management and enhance productivity by ensuring seamless synchronization of personal accounts across multiple devices and platforms.