agi-app-pytorch-playground

v2026.6.4 suspicious
4.0
Medium Risk

AGILAB PyTorch playground app for reproducible neural-network experiments

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package shows no signs of malicious behavior in its current form, but its recent creation and lack of historical releases raise concerns about potential future intentions.

  • Newly created package with no historical releases
  • Low risk in direct execution and network activities
Per-check LLM notes
  • Network: No network calls detected, which is normal for a typical PyTorch playground package.
  • Shell: No shell execution patterns detected, aligning with expectations for a non-malicious package focused on PyTorch experiments.
  • Obfuscation: No obfuscation patterns detected, indicating low risk of malicious activity.
  • Credentials: No credential harvesting patterns detected, indicating safe handling of sensitive information.
  • Metadata: The package is newly created with no history and a single release, raising suspicion but lacking clear malicious indicators.

📦 Package Quality Overall: Medium (5.6/10)

◈ Medium Test Suite 6.0

Partial test coverage signals detected

  • Test runner config found: pyproject.toml
◈ Medium Documentation 7.0

Some documentation present

  • Documentation URL: "Documentation" -> https://thalesgroup.github.io/agilab
  • Detailed PyPI description (4163 chars)
○ Low Contributing Guide 4.0

No contributing guide or governance files found

  • Development Status classifier >= Beta
○ Low Type Annotations 1.0

No type annotations detected

  • No type annotations, py.typed marker, or stub files detected
✦ High Multiple Contributors 10.0

Active multi-contributor project

  • 5 unique contributor(s) across 69 commits in ThalesGroup/agilab
  • Active community — 5 or more distinct contributors

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution

No shell execution patterns detected

Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

No author email provided

Suspicious Page Links

All external links appear legitimate

Git Repository History

Repository ThalesGroup/agilab appears legitimate

Maintainer History score 6.0

3 maintainer concern(s) found

  • Only one version has ever been released — brand new package
  • Package is very new: uploaded 3 day(s) ago
  • Author "Jean-Pierre Morard" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with agi-app-pytorch-playground 
Build a simple Python application using the agi-app-pytorch-playground package to demonstrate its core features.