agent-terminal-ui

v0.12.0 suspicious
7.0
High Risk

Terminal UI for Agentic AI!

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package exhibits high credential risk due to its attempts to harvest sensitive system credentials, moderate metadata risk due to incomplete maintainer information and missing repository, and low obfuscation risk. These factors collectively suggest potential malicious intent, though further investigation is needed.

  • High credential risk due to regex targeting /etc/passwd and /etc/shadow
  • Incomplete maintainer information and missing GitHub repository
Per-check LLM notes
  • Obfuscation: The obfuscation pattern appears to be a simple attempt to measure time intervals, which is not inherently malicious.
  • Credentials: The regular expressions targeting /etc/passwd and /etc/shadow files suggest potential harvesting of sensitive system credentials, indicating high risk.
  • Metadata: The maintainer's author information is incomplete, and the lack of a GitHub repository raises some concerns.

🔬 Heuristic Checks

Outbound Network Calls score 3.0

Found 2 network call pattern(s)

  • " self._http_client = httpx.AsyncClient(timeout=30.0) async def create_session(self) -> str:
  • y: async with httpx.AsyncClient() as client: response = await client.pos
Code Obfuscation score 4.0

Found 2 obfuscation pattern(s)

  • one self.started_at = __import__("time").time() self.completed_at: float | None = None
  • end = self.completed_at or __import__("time").time() return int((end - self.started_at) * 1000)
Shell / Subprocess Execution score 8.0

Found 4 shell execution pattern(s)

  • rgs, ] return subprocess.run( # nosec B603 cmd, capture_output=T
  • h("git") or "git" subprocess.run( # nosec B603 B607 [git_cmd, "init", "--bar
  • h): try: result = subprocess.run( ["git", "ls-files", "--cached", "--others", "--
  • ._master_fd, self._slave_fd = pty.openpty() # Set terminal size self._set_terminal_si
Credential Harvesting score 5.0

Found 2 credential access pattern(s)

  • lesystem re.compile(r">\s*/etc/passwd"), # overwrite passwd re.compile(r">\s*/etc/shadow"),
  • e passwd re.compile(r">\s*/etc/shadow"), # overwrite shadow ] def classify_command(command: st
Typosquatting

No typosquatting candidates detected

Registered Email Domain

Email domain looks legitimate: gmail.com>

Suspicious Page Links

All external links appear legitimate

Git Repository History

No GitHub repository linked

  • No GitHub repository link found
Maintainer History score 4.0

2 maintainer concern(s) found

  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with agent-terminal-ui 
Create a terminal-based personal assistant application using the 'agent-terminal-ui' package. This app should allow users to interact with an agentic AI through a command-line interface, enabling them to perform tasks such as scheduling appointments, setting reminders, checking weather forecasts, and searching the web. The application should also support natural language processing to understand user commands and respond appropriately.

Step 1: Set up your development environment with Python and install the 'agent-terminal-ui' package.
Step 2: Design the main menu of the terminal UI where users can select from different functionalities like 'Schedule', 'Reminders', 'Weather', and 'Search'.
Step 3: Implement the 'Schedule' feature which allows users to add, modify, or delete appointments. It should also display a calendar view of upcoming events.
Step 4: Develop the 'Reminders' functionality to let users create, update, or remove reminders. Users should be able to set specific times for these reminders to pop up.
Step 5: Integrate a weather API to fetch current conditions and forecast data based on user-provided locations. Display this information clearly within the terminal UI.
Step 6: Add a search function that leverages an internet search engine API to provide relevant results when users query general information.
Step 7: Utilize the 'agent-terminal-ui' package to enhance the user experience by providing smooth navigation between different sections of the application and ensuring all interactions feel seamless and intuitive.

The 'agent-terminal-ui' package will be critical in managing the terminal UI, handling user inputs, and displaying outputs in a structured and user-friendly manner. Additionally, explore integrating the package's agentic capabilities to make the assistant smarter and more responsive to user needs.