agentcad

v0.2.4 suspicious
6.0
Medium Risk

CLI CAD tool for AI agents. Write CadQuery scripts, get STEP files, renders, and metrics.

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package exhibits several suspicious characteristics including obfuscation techniques and unusual metadata, raising concerns about potential malicious intent. However, without concrete evidence of harmful behavior, the package cannot be definitively labeled as malicious.

  • Significant obfuscation risk
  • Unusual metadata and repository activity
Per-check LLM notes
  • Network: No network calls detected, which is normal and does not indicate risk.
  • Shell: Subprocess execution might be used for legitimate purposes like daemon management, but further investigation is needed to ensure it's not being exploited for unauthorized actions.
  • Obfuscation: The code snippet shows signs of obfuscation through manual manipulation which could be used to evade simple static analysis, suggesting potential malicious intent.
  • Credentials: No clear patterns indicative of credential harvesting were found in the provided snippet.
  • Metadata: The recent creation and rapid activity of the git repository, along with the maintainer's new or inactive account status, raise concerns about potential malicious intent.

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation score 2.0

Found 1 obfuscation pattern(s)

  • erWarning) code = compile(source, filename, "exec") exec(code, script_globals) captur
Shell / Subprocess Execution score 10.0

Found 6 shell execution pattern(s)

  • k_quiet(pid_path) proc = subprocess.Popen( [sys.executable, "-m", "agentcad.daemon",
  • the protocol. proc = subprocess.Popen( [sys.executable, "-c", "import time; time.sleep
  • (sock_path, pid_path) subprocess.run( [str(pathlib.Path(sys.executable).parent / "age
  • try: r1 = subprocess.run( [str(pathlib.Path(sys.executable).parent /
  • re noticing. r2 = subprocess.run( [str(pathlib.Path(sys.executable).parent /
  • .parent / "agentcad") subprocess.run( [agentcad_exe, "init", "--name", "tbb_test"],
Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

No author email provided

Suspicious Page Links

All external links appear legitimate

Git Repository History score 5.0

Git history flags: Repository created very recently: 4 day(s) ago (2026-06-02T02:39:53Z)

  • Repository created very recently: 4 day(s) ago (2026-06-02T02:39:53Z)
  • All 9 commits happened within 24 hours
Maintainer History score 2.0

1 maintainer concern(s) found

  • Author "James Dillard" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with agentcad 
Create a Python-based mini-application named 'AgentCAD Studio' that leverages the 'agentcad' package to streamline the process of designing and analyzing AI-driven mechanical components. The application should allow users to input simple geometric parameters for common mechanical parts (such as gears, shafts, and bearings), generate 3D models using CadQuery scripts, and output various formats like STEP files and renders. Additionally, it should calculate basic mechanical properties such as mass, volume, and surface area, providing users with immediate feedback on their design choices.

Key Features:
1. User Interface: Develop a user-friendly interface using Python's Tkinter library for easy parameter input and model visualization.
2. Design Generation: Utilize 'agentcad' to write and execute CadQuery scripts based on user inputs to create precise 3D models.
3. Output Formats: Implement functionality to export designs in STEP format for further use in CAD software and PNG format for visual previews.
4. Property Calculation: Integrate 'agentcad' to compute and display essential mechanical properties of the generated models.
5. Interactive Exploration: Allow users to interactively modify parameters and see real-time updates in both the 3D model and calculated properties.

Steps to Build:
1. Install necessary packages including 'agentcad', 'cadquery', and 'Tkinter'.
2. Design the UI layout in Tkinter, ensuring intuitive navigation and data entry.
3. Implement the backend logic to handle user inputs, call 'agentcad' functions for script generation and execution, and manage file outputs.
4. Add rendering capabilities to preview models within the application.
5. Test the application thoroughly with different component types and validate all computed properties against known formulas or external tools.