ai-forge-sdk

v0.2.2 suspicious
4.0
Medium Risk

Python SDK for the AI Forge Control Plane API

πŸ€– AI Analysis

Final verdict: SUSPICIOUS

The package has moderate metadata risks due to suspicious links and lack of maintainer details, though it shows no direct signs of malicious intent in its functionality.

  • Suspicious non-HTTPS link in metadata
  • Lack of maintainer information
Per-check LLM notes
  • Network: Network calls are expected for SDKs to communicate with their services.
  • Shell: No shell execution patterns detected.
  • Obfuscation: No obfuscation patterns detected, indicating low risk.
  • Credentials: No credential harvesting patterns detected, indicating low risk.
  • Metadata: Suspicious non-HTTPS link and lack of maintainer information suggest potential issues, but insufficient evidence for high risk.

πŸ“¦ Package Quality Overall: Medium (5.2/10)

✦ High Test Suite 9.0

Test suite present β€” 16 test file(s) found

  • Test runner config found: pyproject.toml
  • 16 test file(s) detected (e.g. test_key_permissions.py)
β—ˆ Medium Documentation 7.0

Some documentation present

  • Documentation URL: "Documentation" -> https://github.com/onstak/ai-forge-sdk-python#readme
  • Detailed PyPI description (15067 chars)
β—‹ Low Contributing Guide 2.0

No contributing guide or governance files found

  • No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found
β—ˆ Medium Type Annotations 7.0

Partial type annotation coverage

  • Classifier: Typing :: Typed
  • Type checker (mypy / pyright / pytype) referenced in project
  • 125 type-annotated function signatures detected in source
β—‹ Low Multiple Contributors 1.0

Could not retrieve contributor data from GitHub

  • GitHub API error: 404

πŸ”¬ Heuristic Checks

⚠ Outbound Network Calls score 1.5

Found 1 network call pattern(s)

  • ders) self._client = httpx.Client( base_url=config.normalized_base_url(),
βœ“ Code Obfuscation

No obfuscation patterns detected

βœ“ Shell / Subprocess Execution

No shell execution patterns detected

βœ“ Credential Harvesting

No credential harvesting patterns detected

βœ“ Typosquatting

No typosquatting candidates detected

βœ“ Registered Email Domain

Email domain looks legitimate: onstak.com>

⚠ Suspicious Page Links score 2.0

Found 1 suspicious link(s) on the package page

  • Non-HTTPS external link: http://127.0.0.1:8000
⚠ Git Repository History score 3.0

Repository not found (deleted or private)

  • Repository not found (deleted or private)
⚠ Maintainer History score 4.0

2 maintainer concern(s) found

  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)
βœ“ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

πŸ’‘ AI App Starter Prompt

Use this prompt to build a project with ai-forge-sdk 
Create a Python-based command-line tool that integrates with the AI Forge Control Plane API using the 'ai-forge-sdk' package. This tool will allow users to manage their AI Forge resources such as models, deployments, and jobs. Here’s a detailed breakdown of the project scope and features:

1. **Setup and Initialization**: Start by installing the 'ai-forge-sdk' package and setting up your environment with necessary configurations such as API keys and endpoints.
2. **Resource Management**:
   - **List Resources**: Implement a feature to list all available resources in the user’s account, including models, deployments, and jobs.
   - **Get Resource Details**: Allow users to fetch detailed information about a specific resource by its ID.
3. **Model Management**:
   - **Upload Models**: Provide functionality to upload new models to the AI Forge platform.
   - **Delete Models**: Enable users to delete unwanted models from their account.
4. **Deployment Management**:
   - **Deploy Models**: Allow users to deploy their models to different environments.
   - **Undeploy Models**: Offer the ability to undeploy models when they are no longer needed.
5. **Job Management**:
   - **Submit Jobs**: Users should be able to submit jobs for model inference or training.
   - **Monitor Job Status**: Include a feature to monitor the status of submitted jobs until completion.
6. **User Interface**: Design a clean and intuitive CLI interface for easy navigation and interaction with the tool.
7. **Error Handling**: Ensure robust error handling mechanisms are in place to handle various exceptions gracefully.
8. **Documentation**: Write comprehensive documentation explaining how to install, configure, and use the tool effectively.

The 'ai-forge-sdk' package will be extensively used throughout this project to interact with the AI Forge Control Plane API. Your task is to design and implement each feature listed above, ensuring that the tool is both functional and user-friendly.