agent-hub-kit

v0.1.1 suspicious
7.0
High Risk

MCP ベースのマルチエージェント開発キット: ストリーミング対応の MCP クライアント / サーバーをまとめた統合ライブラリ

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package exhibits high network and shell execution risks, with no clear documentation on why these features are necessary. Additionally, suspicious metadata increases concerns about its legitimacy.

  • High network risk
  • High shell execution risk
  • Suspicious metadata
Per-check LLM notes
  • Network: The presence of network connection attempts suggests potential external communication which may not be intended for a standard utility.
  • Shell: Executing shell commands can lead to system modifications or information leakage, indicating high risk if the purpose is unknown.
  • Obfuscation: No obfuscation patterns detected, indicating low risk.
  • Credentials: No credential harvesting patterns detected, indicating low risk.
  • Metadata: Suspicious links and lack of maintainer history suggest potential risks.

🔬 Heuristic Checks

Outbound Network Calls score 1.5

Found 1 network call pattern(s)

  • try: with socket.create_connection((host, port), timeout=1.0): return e
Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution score 2.0

Found 1 shell execution pattern(s)

  • str(port), ] proc = subprocess.Popen( args, stdout=log_fh, stderr=subprocess.STDOUT, env=
Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

No author email provided

Suspicious Page Links score 6.0

Found 3 suspicious link(s) on the package page

  • Non-HTTPS external link: http://127.0.0.1:8001/mcp
  • Non-HTTPS external link: http://127.0.0.1:9999/mcp
  • Non-HTTPS external link: http://...
Git Repository History score 3.0

Repository not found (deleted or private)

  • Repository not found (deleted or private)
Maintainer History score 6.0

3 maintainer concern(s) found

  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)
  • Package has no PyPI classifiers (low effort / metadata quality)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with agent-hub-kit 
Create a real-time collaboration tool for remote teams using the 'agent-hub-kit' Python package. This tool will allow multiple users to simultaneously edit and discuss documents in real-time, enhancing productivity and communication efficiency. The application should include the following core functionalities:

1. User Authentication: Implement a simple user authentication system where users can sign up and log in.
2. Real-Time Document Editing: Users should be able to open, edit, and save documents collaboratively. Any changes made by one user should be reflected in real-time across all connected clients.
3. Chat Functionality: A live chat feature should accompany each document, allowing team members to communicate directly within the application.
4. File Management: Users should be able to upload, download, and manage their documents through the application.
5. Notifications: Notify users of new messages and document updates via in-app notifications.

The 'agent-hub-kit' package will be crucial in enabling the real-time aspects of this application. It provides a streaming-capable MCP client/server integration library which will facilitate the live synchronization of document edits and chat messages among users. You should utilize its capabilities to ensure smooth, low-latency interactions between the server and client applications. Additionally, consider implementing a basic UI framework like Streamlit or Flask to make the application more user-friendly.