ai-courier

v0.6.0 suspicious
6.0
Medium Risk

AI-native email & calendar client over JMAP and CalDAV

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package shows a notable credential risk due to direct API token requests, along with moderate concerns regarding network activity and metadata transparency.

  • High credential risk due to direct API token requests
  • Moderate network risk indicating possible authenticated API calls
  • Lack of detailed metadata and a GitHub repository
Per-check LLM notes
  • Network: The network call pattern suggests the package is likely making authenticated API calls, which could be normal for an AI-related service but requires further investigation into its purpose and destination.
  • Shell: No shell execution patterns were detected.
  • Obfuscation: No signs of code obfuscation detected.
  • Credentials: Potential risk of credential harvesting observed as the package prompts for API tokens and app passwords directly.
  • Metadata: The author's lack of detail and the absence of a GitHub repository may indicate potential issues with transparency and maintainability.

📦 Package Quality Overall: Low (4.4/10)

✦ High Test Suite 9.0

Test suite present — 31 test file(s) found

  • Test runner config found: conftest.py
  • Test runner config found: conftest.py
  • Test runner config found: pyproject.toml
  • 31 test file(s) detected (e.g. conftest.py)
◈ Medium Documentation 5.0

Some documentation present

  • Detailed PyPI description (5168 chars)
○ Low Contributing Guide 2.0

No contributing guide or governance files found

  • No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found
◈ Medium Type Annotations 5.0

Partial type annotation coverage

  • 137 type-annotated function signatures detected in source
○ Low Multiple Contributors 1.0

Unable to verify contributor count: no GitHub repository found

  • No GitHub repository linked — contributor count unavailable

🔬 Heuristic Checks

Outbound Network Calls score 1.5

Found 1 network call pattern(s)

  • = None self._client = httpx.AsyncClient( headers={ "Authorization": f"Be
Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution

No shell execution patterns detected

Credential Harvesting score 7.5

Found 3 credential access pattern(s)

  • mail): ").strip() token = getpass.getpass("API token (for email): ").strip() app_pw = getpass.getp
  • ail): ").strip() app_pw = getpass.getpass("App password (for calendar): ").strip() account = Acco
  • ress: ").strip() app_pw = getpass.getpass("CalDAV app password: ").strip() delegate = AccountConf
Typosquatting

No typosquatting candidates detected

Registered Email Domain

Email domain looks legitimate: hi-team.net>

Suspicious Page Links

All external links appear legitimate

Git Repository History

No GitHub repository linked

  • No GitHub repository link found
Maintainer History score 4.0

2 maintainer concern(s) found

  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with ai-courier 
Create a personal productivity assistant application using the 'ai-courier' package. This application will integrate with your email and calendar services to provide enhanced management and interaction capabilities. Here are the key functionalities you should implement:

1. **Email Management**: Allow users to fetch, send, and manage emails directly from within the app. Implement features such as filtering emails based on specific criteria (e.g., sender, subject, date), marking emails as read/unread, archiving, and deleting.
2. **Calendar Synchronization**: Sync events and appointments from multiple calendars into one view within the app. Users should be able to add new events, update existing ones, and delete events directly through the app.
3. **Task Reminders**: Set up reminders for upcoming events and tasks directly linked to emails. For instance, if an email contains information about a meeting, the app should automatically create a reminder for that meeting.
4. **Integration with JMAP and CalDAV**: Utilize 'ai-courier' to handle the integration with email and calendar services via JMAP and CalDAV protocols. Ensure seamless interaction with different providers supporting these standards.
5. **User Interface**: Develop a clean, user-friendly interface where all email and calendar interactions are accessible. Consider mobile responsiveness for a better user experience across devices.
6. **Security Measures**: Implement robust security measures to protect user data. This includes secure authentication methods when accessing email and calendar services.

To get started, familiarize yourself with the 'ai-courier' documentation to understand how to authenticate users and interact with their email and calendar services. Use Python's Flask framework to develop the backend of the application, and consider React or Vue.js for the frontend development. Your goal is to create a tool that enhances productivity by consolidating and automating email and calendar management tasks.