aichs

v0.3.1 suspicious
4.0
Medium Risk

A minimal visual harness for agentic coding.

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package aichs v0.3.1 has a moderate risk score due to potential shell execution capabilities, though no other significant risks were identified.

  • Potential shell execution capabilities
  • No network calls detected
  • No obfuscation or credential harvesting detected
Per-check LLM notes
  • Network: No network calls were detected, which is normal and does not indicate any risk.
  • Shell: The presence of shell execution patterns may indicate the package could execute arbitrary commands, which could be a security risk if not properly sanitized or intended for legitimate use.
  • Obfuscation: No obfuscation patterns detected, suggesting low risk.
  • Credentials: No credential harvesting patterns detected, indicating safe handling of secrets.

📦 Package Quality Overall: Medium (5.8/10)

✦ High Test Suite 9.0

Test suite present — 25 test file(s) found

  • 25 test file(s) detected (e.g. test_auto_title.py)
◈ Medium Documentation 7.0

Some documentation present

  • Documentation URL: "Documentation" -> https://github.com/nadav-yo/aichs/tree/main/docs
  • Detailed PyPI description (3681 chars)
○ Low Contributing Guide 2.0

No contributing guide or governance files found

  • No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found
◈ Medium Type Annotations 5.0

Partial type annotation coverage

  • 335 type-annotated function signatures detected in source
◈ Medium Multiple Contributors 6.0

Limited contributor diversity

  • 2 unique contributor(s) across 26 commits in nadav-yo/aichs
  • Two distinct contributors found

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution score 8.0

Found 4 shell execution pattern(s)

  • try: result = subprocess.run( spec[1:], shell=True,
  • dow_startupinfo()) return subprocess.run(*args, **kwargs) def popen_no_window(*args, process_group:
  • dow_startupinfo()) return subprocess.Popen(*args, **kwargs) from __future__ import annotations import
  • spec[1:], shell=True, capture_output=True, text=
Credential Harvesting

No credential harvesting patterns detected

Typosquatting score 3.0

Possible typosquat of: rich

  • "aichs" is 2 edit(s) from "rich"
Registered Email Domain

No author email provided

Suspicious Page Links

All external links appear legitimate

Git Repository History score 2.5

Git history flags: Repository has zero stars and zero forks

  • Repository has zero stars and zero forks
Maintainer History score 2.0

1 maintainer concern(s) found

  • Author "Nadav Yo" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with aichs 
Create a fully-functional mini-application named 'CodeVisualizer' using the Python package 'aichs'. This application should allow users to visualize and interact with their code snippets in a more engaging way, enhancing the understanding and debugging process. The app should include the following features:

1. **Code Snippet Input**: Users should be able to input their code snippets directly into the application.
2. **Syntax Highlighting**: Implement syntax highlighting for different programming languages like Python, JavaScript, and HTML.
3. **Line Numbering**: Display line numbers for easy reference and navigation within the code snippet.
4. **Search Functionality**: Enable users to search for specific lines of code or keywords within the code snippet.
5. **Comment System**: Allow users to add comments next to specific lines of code for notes or explanations.
6. **Interactive Debugging Tools**: Integrate basic debugging tools such as breakpoints and step-through functionality.
7. **Export Feature**: Provide an option for users to export the annotated and highlighted code as a formatted text file or image.

Utilize the 'aichs' package to create a visually appealing and interactive interface for these features. Specifically, leverage 'aichs' to manage the graphical layout and user interactions, ensuring a smooth and intuitive experience. The application should be designed with simplicity and usability in mind, making it accessible for both beginners and experienced coders.