aergia-lang

v1.11.0 suspicious
4.0
Medium Risk

The Aergia programming language

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package exhibits signs of obfuscation and potential runtime evaluation that could be used to hide malicious activities. Additionally, the single-package maintainer profile raises some suspicion.

  • Obfuscation risk: 6/10
  • Metadata risk: 3/10
Per-check LLM notes
  • Network: No network calls detected.
  • Shell: The detected shell execution pattern is likely for package upgrade purposes and not inherently malicious, but could be used for nefarious purposes if the source is compromised.
  • Obfuscation: The code shows signs of obfuscation with unusual formatting and potential for runtime evaluation which could hide malicious activities.
  • Credentials: No clear patterns indicative of credential harvesting were found.
  • Metadata: The maintainer has only one package, which might indicate a new or less active account, raising some suspicion but not conclusive evidence of malice.

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation score 10.0

Found 6 obfuscation pattern(s)

  • de: node.eval(env) # run repl else: print
  • print(node.eval(env)) except KeyboardInterrupt:
  • self.col = None def eval(self, env): if not isinstance(self.value, str):
  • res = node.eval(env) return str(res) return re
  • self.col = None def eval(self, env): try: if self.name not in e
  • self.col = None def eval(self, env): try: value = self.child.ev
Shell / Subprocess Execution score 2.0

Found 1 shell execution pattern(s)

  • ") try: subprocess.check_call([sys.executable, "-m", "pip", "install", "--upgrade", repo])
Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

No author email provided

Suspicious Page Links

All external links appear legitimate

Git Repository History

Repository las-r/aergia appears legitimate

Maintainer History score 2.0

1 maintainer concern(s) found

  • Author "las-r" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with aergia-lang 
Build a simple Python application using the aergia-lang package to demonstrate its core features.