agentix-deployment-e2b

v0.1.0 suspicious
4.0
Medium Risk

E2B deployment backend for Agentix

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package shows low risks in terms of network, shell, obfuscation, and credential handling but has a higher metadata risk due to suspicious activities in the git repository and maintainer history, suggesting a potential supply-chain attack.

  • Suspicious activities in git repository and maintainer history
  • Low risks in network, shell, obfuscation, and credential handling
Per-check LLM notes
  • Network: No network calls detected, which is normal unless the package requires network interaction for its intended functionality.
  • Shell: No shell execution patterns detected, indicating no immediate signs of executing system commands.
  • Obfuscation: No obfuscation patterns detected, indicating low risk.
  • Credentials: No credential harvesting patterns detected, indicating low risk.
  • Metadata: Suspicious activity around the git repository and maintainer history suggest potential risk.

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution

No shell execution patterns detected

Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

No author email provided

Suspicious Page Links

All external links appear legitimate

Git Repository History score 7.5

Git history flags: Repository has zero stars and zero forks

  • Repository has zero stars and zero forks
  • Single contributor with only 4 commit(s) — possibly throwaway account
  • All 4 commits happened within 24 hours
Maintainer History score 6.0

3 maintainer concern(s) found

  • Only one version has ever been released — brand new package
  • Author "Agentiix" appears to have only 1 package on PyPI (new or inactive account)
  • Package has no PyPI classifiers (low effort / metadata quality)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with agentix-deployment-e2b 
Build a simple Python application using the agentix-deployment-e2b package to demonstrate its core features.