Package Metadata

Author: ACMEOW Contributors
Email: —
PyPI: acmeow
Python: >=3.10
Versions: 9 releases
First release: 01 Feb 2026, 14:02 UTC
Analysed: 06 Jun 2026, 01:43 UTC
Source files: 60 .py files scanned

Project Links

Documentation Homepage Issues Repository

Classifiers

Development Status :: 5 - Production/StableIntended Audience :: DevelopersIntended Audience :: System AdministratorsLicense :: OSI Approved :: Apache Software LicenseOperating System :: OS IndependentProgramming Language :: Python :: 3Programming Language :: Python :: 3.10Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package has moderate risks due to potential shell execution without proper sanitization and some metadata concerns, though it lacks definitive signs of malicious intent.

Shell execution patterns indicate potential risks.
Suspicious metadata and low repository activity.

Per-check LLM notes

Network: The network call patterns detected are minimal and seem to be standard initialization for HTTP requests.
Shell: The shell execution patterns suggest potential interaction with system commands which could be risky if not properly sanitized or controlled.
Obfuscation: No obfuscation patterns detected, indicating low risk.
Credentials: No credential harvesting patterns detected, indicating low risk.
Metadata: Suspicious non-HTTPS link and low activity in git repository indicate potential risk, but lack of clear malicious indicators prevents high confidence.

🔬 Heuristic Checks

⚠ Outbound Network Calls score 3.0

Found 2 network call pattern(s)

None: self._session = requests.Session() if proxy_url: self._session.proxies =
meout self._session = requests.Session() self._session.headers.update({ "Author

✓ Code Obfuscation

No obfuscation patterns detected

⚠ Shell / Subprocess Execution score 10.0

Found 5 shell execution pattern(s)

ew certificates.""" # subprocess.run(["nginx", "-s", "reload"], check=True) print(" Woul
okup result = subprocess.run( ["nslookup", "-type=TXT", record_name],
result = subprocess.run( ["dig", "+short", "TXT", record_nam
result = subprocess.run( ["host", "-t", "TXT", record_name],
. reload_callback=lambda: subprocess.run(["nginx", "-s", "reload"]), ... ) """ def _

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

No author email provided

⚠ Suspicious Page Links score 2.0

Found 1 suspicious link(s) on the package page

Non-HTTPS external link: http://{domain}/.well-known/acme-challenge/{token}

⚠ Git Repository History score 2.5

Git history flags: Repository has zero stars and zero forks

Repository has zero stars and zero forks

⚠ Maintainer History score 2.0

1 maintainer concern(s) found

Author "ACMEOW Contributors" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with acmeow

Create a fully-functional mini-application named 'CertManager' that leverages the 'acmeow' Python package to automate SSL/TLS certificate management using the ACME protocol. This application should serve as a simple yet robust tool for developers and system administrators to manage their certificates more efficiently.

**Application Overview:**
CertManager will allow users to:
- Register new accounts with Let's Encrypt or any other ACME-compliant CA.
- Obtain new SSL/TLS certificates automatically for specified domains.
- Renew certificates before they expire.
- Revoke certificates if necessary.

**Core Features:**
1. **Account Management:** Users should be able to register, login, and manage multiple accounts with different Certificate Authorities (CAs).
2. **Certificate Issuance:** CertManager should be capable of issuing certificates for one or more domains at once.
3. **Automatic Renewal:** Implement a feature that checks the validity period of each certificate and automatically renews it if it is about to expire.
4. **Revocation:** Provide an option to revoke a certificate if it becomes compromised.
5. **Integration:** Allow integration with web servers like Nginx or Apache to automatically configure SSL/TLS settings after obtaining a certificate.

**Utilizing 'acmeow':**
- Use 'acmeow' to handle all interactions with the ACME protocol, including account registration, domain validation, certificate issuance, and revocation.
- Leverage 'acmeow' to simplify the process of setting up challenges for domain validation (HTTP-01, DNS-01).
- Integrate 'acmeow' for monitoring certificate expiration dates and triggering automatic renewal processes.

**Development Steps:**
1. Set up the development environment with Python and install the 'acmeow' package.
2. Design and implement the user interface for account management.
3. Develop the certificate issuance logic using 'acmeow'.
4. Implement automatic renewal functionality based on 'acmeow' integration.
5. Add revocation support using 'acmeow' functionalities.
6. Test the application thoroughly with various scenarios.
7. Document the setup process and usage instructions clearly.