agsk

v1.4.0 safe
2.0
Low Risk

Analyze repositories and synthesize AGENTS.md

🤖 AI Analysis

Final verdict: SAFE

The package shows minimal signs of potential risk, with low scores for both obfuscation and credential risks. There is no clear indication of a supply-chain attack or malicious intent.

  • Low obfuscation risk
  • No credential harvesting detected
Per-check LLM notes
  • Obfuscation: The code pattern suggests an attempt to import the 'yaml' module with error handling, which could be obfuscated but is not inherently malicious.
  • Credentials: No patterns indicative of credential harvesting were detected.

📦 Package Quality Overall: Low (4.8/10)

✦ High Test Suite 9.0

Test suite present — 23 test file(s) found

  • Test runner config found: pyproject.toml
  • 23 test file(s) detected (e.g. test_agents_document.py)
◈ Medium Documentation 5.0

Some documentation present

  • Detailed PyPI description (24410 chars)
○ Low Contributing Guide 2.0

No contributing guide or governance files found

  • No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found
◈ Medium Type Annotations 7.0

Partial type annotation coverage

  • Type checker (mypy / pyright / pytype) referenced in project
  • 411 type-annotated function signatures detected in source
○ Low Multiple Contributors 1.0

Unable to verify contributor count: no GitHub repository found

  • No GitHub repository linked — contributor count unavailable

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation score 2.0

Found 1 obfuscation pattern(s)

  • try: _yaml_module = __import__("yaml") return _yaml_module except ImportError:
Shell / Subprocess Execution score 4.0

Found 2 shell execution pattern(s)

  • r, str]: try: r = subprocess.run( cmd, cwd=cwd, capture_o
  • po(tmp_path) completed = subprocess.run( [sys.executable, str(ROOT / "scripts" / "measure.py
Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

No author email provided

Suspicious Page Links

All external links appear legitimate

Git Repository History

No GitHub repository linked

  • No GitHub repository link found
Maintainer History score 6.0

3 maintainer concern(s) found

  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)
  • Package has no PyPI classifiers (low effort / metadata quality)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with agsk 
Your task is to develop a fully-functional mini-application using the Python package 'agsk'. This application will serve as a tool for analyzing GitHub repositories and synthesizing AGENTS.md files. AGENTS.md is a new trend in open-source projects, akin to CONTRIBUTING.md and CODE_OF_CONDUCT.md, where contributors can detail their roles and responsibilities within the project. Your application should be designed to streamline this process for developers and maintainers.

### Step-by-Step Application Design:
1. **Repository Analysis**: Utilize 'agsk' to analyze a given GitHub repository. The analysis should include identifying contributors, their contributions, and any existing guidelines related to roles and responsibilities.
2. **Synthesis of AGENTS.md**: Based on the analysis, your app should generate an AGENTS.md file that outlines the identified roles and responsibilities of each contributor.
3. **User Interface**: Develop a simple command-line interface (CLI) for users to interact with your application. The CLI should allow users to input the URL of a GitHub repository and view the synthesized AGENTS.md content.
4. **Customization Options**: Provide options for users to customize the AGENTS.md template before finalizing it. Users should be able to add sections for rules, guidelines, and other relevant information.
5. **Export Functionality**: Implement functionality to export the synthesized AGENTS.md file directly to the user's local machine or upload it to the specified GitHub repository.

### Suggested Features:
- **Role Detection**: Automatically detect and categorize different roles based on the nature of contributions (e.g., bug fixes, feature development, documentation).
- **Guideline Integration**: Integrate existing project guidelines into the AGENTS.md file where applicable.
- **Interactive Customization**: Allow users to interactively customize the AGENTS.md file through the CLI.
- **Version Control**: Ensure that changes made to AGENTS.md are version-controlled, allowing for easy tracking of modifications.
- **Error Handling**: Implement robust error handling to manage issues such as invalid URLs, missing permissions, etc.

### Utilizing 'agsk':
- Use 'agsk' to fetch and analyze data from GitHub repositories efficiently.
- Leverage 'agsk' to structure and format the AGENTS.md content according to best practices.
- Employ 'agsk' to validate the synthesized AGENTS.md file against predefined templates and standards.

This project aims to simplify the process of maintaining and updating AGENTS.md files, making it easier for open-source projects to manage and recognize the diverse roles of their contributors.