agentity-cli

v0.1.2 suspicious
4.0
Medium Risk

Agentity CLI — create, inspect, revoke, verify, manifest

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package exhibits low signs of obfuscation and credential risks, with no network calls. However, shell execution is present, requiring further scrutiny to rule out potential misuse. Additionally, metadata quality and maintainer activity are concerning.

  • Shell execution detected, needs further investigation.
  • Poor metadata quality and low maintainer activity raise concerns.
Per-check LLM notes
  • Network: No network calls detected, which is normal and does not indicate any risk.
  • Shell: Shell execution detected might be for running CLI scripts, but requires further investigation to ensure it's not being used maliciously.
  • Obfuscation: No obfuscation patterns detected, indicating low risk.
  • Credentials: No credential harvesting patterns detected, indicating low risk.
  • Metadata: The package shows signs of low maintainer activity and poor metadata quality, raising concerns but not definitive proof of malicious intent.

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution score 2.0

Found 1 shell execution pattern(s)

  • ef run_cli(*args): return subprocess.run( [sys.executable, CLI_SCRIPT] + list(args),
Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

No author email provided

Suspicious Page Links

All external links appear legitimate

Git Repository History score 2.5

Git history flags: Repository has zero stars and zero forks

  • Repository has zero stars and zero forks
Maintainer History score 6.0

3 maintainer concern(s) found

  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)
  • Package has no PyPI classifiers (low effort / metadata quality)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with agentity-cli 
Create a mini-application named 'AgentVerify' using Python and the 'agentity-cli' package. This application will serve as a digital identity verification tool for users within a secure environment. Your task is to design and implement a command-line interface (CLI) that allows users to perform several actions related to digital identities using the functionalities provided by 'agentity-cli'. Here are the steps and features your application should include:

1. **Setup**: Begin by installing the 'agentity-cli' package. Ensure your application checks if the package is installed; if not, it should guide the user through the installation process.
2. **User Registration**: Implement a feature where new users can register their digital identity by providing necessary details. Use 'agentity-cli' to create a unique identifier for each user.
3. **Identity Verification**: Allow users to verify their digital identity through the CLI. This involves using 'agentity-cli' to inspect and validate the credentials associated with their unique identifier.
4. **Revoke Access**: Provide functionality for users to revoke access to their digital identity when they no longer wish to use it. This should be done securely using the 'agentity-cli' package's capabilities.
5. **Manifest Creation**: Enable users to create a manifest of all actions performed on their digital identity, such as registration, verification attempts, and revocation requests. This helps in maintaining a record for audit purposes.
6. **User Interface**: Design a clean, user-friendly CLI interface that guides users through these processes seamlessly.
7. **Error Handling**: Implement robust error handling to manage scenarios like incorrect inputs, missing dependencies, or failed operations.
8. **Security Measures**: Ensure all interactions are secure and that sensitive information is handled appropriately. Use 'agentity-cli' features to enhance security measures.

Your application should be well-documented, including setup instructions, usage examples, and explanations of how 'agentity-cli' is utilized in each step. Additionally, consider adding a help command that explains all available options and commands within your application.