Package Metadata

Author: —
Email: AGIRAILS Team <[email protected]>
PyPI: agirails
Python: >=3.9
Versions: 7 releases
First release: 28 Dec 2025, 13:54 UTC
Analysed: 06 Jun 2026, 13:00 UTC
Source files: 61 .py files scanned

Project Links

Documentation Homepage Issues Repository

Classifiers

Development Status :: 5 - Production/StableIntended Audience :: DevelopersLicense :: OSI Approved :: Apache Software LicenseOperating System :: OS IndependentProgramming Language :: Python :: 3Programming Language :: Python :: 3.10Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.9Topic :: Software Development :: Libraries :: Python Modules

🤖 AI Analysis

Final verdict: SAFE

The package shows moderate risks in network and shell interactions but lacks clear indicators of malicious intent. The incomplete author metadata raises some concern but does not conclusively point towards a supply-chain attack.

moderate network interaction
potential shell command execution
incomplete author metadata

Per-check LLM notes

Network: The use of httpx indicates the package makes network requests, which could be legitimate if it's designed to interact with APIs or web services.
Shell: Subprocess execution can be risky as it allows the package to run external commands, potentially leading to unintended behaviors or security vulnerabilities.
Obfuscation: The observed pattern is likely for version retrieval rather than malicious obfuscation.
Credentials: No suspicious patterns indicative of credential harvesting were found.
Metadata: The author's information is incomplete and they may be new or inactive, raising some suspicion but not conclusive evidence of malice.

📦 Package Quality Overall: Medium (6.0/10)

◈ Medium Test Suite 6.0

Partial test coverage signals detected

Test runner config found: pyproject.toml

◈ Medium Documentation 7.0

Some documentation present

Documentation URL: "Documentation" -> https://docs.agirails.io
Detailed PyPI description (7080 chars)

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

◈ Medium Type Annotations 7.0

Partial type annotation coverage

Classifier: Typing :: Typed
290 type-annotated function signatures detected in source

◈ Medium Multiple Contributors 6.0

Limited contributor diversity

2 unique contributor(s) across 100 commits in agirails/sdk-python
Two distinct contributors found

🔬 Heuristic Checks

⚠ Outbound Network Calls score 7.5

Found 5 network call pattern(s)

) async with httpx.AsyncClient(timeout=self._timeout) as client: kwargs: Dict[s
HAS_HTTPX: async with httpx.AsyncClient() as client: resp = await client.get(url, header
HAS_HTTPX: async with httpx.AsyncClient() as client: resp = await client.post(
t httpx with httpx.Client(timeout=timeout_s) as client: start = ti
ttps://"): async with httpx.AsyncClient(timeout=10.0, follow_redirects=True) as client:

⚠ Code Obfuscation score 2.0

Found 1 obfuscation pattern(s)

"python_sdk_version": __import__("agirails").__version__, "pinned_now_sec": FIXED_NOW_SEC,

⚠ Shell / Subprocess Execution score 4.0

Found 2 shell execution pattern(s)

try: result = subprocess.run( [sys.executable, "-m", "agirails.cli.main",
nts as array result = subprocess.run( full_args, capture_output=True,

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: agirails.io>

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository agirails/sdk-python appears legitimate

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with agirails

Create a mini-application named 'AgentCommerceHelper' that leverages the AGIRAILS Python SDK to facilitate transactions within the Agent Commerce ecosystem. This application will serve as a bridge between merchants and agents, enabling them to easily manage their transactions without needing to delve into the complexities of the protocol itself. Here’s a detailed breakdown of what your application should accomplish:

1. **User Authentication**: Implement user authentication using OAuth2.0 to secure access to the AGIRAILS API. Users (both merchants and agents) must log in before they can perform any transaction-related actions.

2. **Transaction Management**: Allow users to create, view, update, and delete transactions. Each transaction should include details such as transaction ID, merchant ID, agent ID, product details, amount, status, and timestamps.

3. **Real-Time Updates**: Utilize AGIRAILS' real-time capabilities to provide instant updates on transaction statuses. For example, if a transaction is approved or declined, the user should receive immediate notification.

4. **Analytics Dashboard**: Develop a simple analytics dashboard that displays key performance indicators (KPIs) such as total transaction volume, average transaction value, and transaction success rates. This dashboard should refresh in real-time to reflect current data.

5. **Custom Reports**: Enable users to generate custom reports based on specific criteria such as date range, transaction status, and involved parties. These reports should be downloadable in PDF format.

6. **Error Handling and Logging**: Ensure robust error handling and logging mechanisms are in place to capture any issues that arise during transactions. This will help in troubleshooting and improving the application over time.

**How to Use AGIRAILS Package**:
- **Initialization**: Start by initializing the AGIRAILS client with your API credentials.
- **Creating Transactions**: Use the AGIRAILS API to create new transactions by providing necessary parameters like merchant ID, agent ID, and transaction details.
- **Fetching Transactions**: Fetch existing transactions for a given user (merchant or agent) to display in the UI.
- **Updating Transactions**: Provide functionality to update transaction details, such as changing the status from pending to completed.
- **Deleting Transactions**: Implement the ability to delete transactions that are no longer needed.
- **Real-Time Notifications**: Leverage AGIRAILS’ real-time features to push notifications about transaction changes directly to the user interface.

Your task is to design and implement these features using Python and the AGIRAILS SDK. Ensure that the application is user-friendly, efficient, and scalable.