Package Metadata

Author: —
Email: Carsten Knoll <[email protected]>
PyPI: aihook
Python: >=3.11
Versions: 3 releases
First release: 16 May 2026, 20:36 UTC
Analysed: 06 Jun 2026, 16:22 UTC
Source files: 10 .py files scanned

Project Links

Classifiers

Development Status :: 4 - BetaEnvironment :: ConsoleIntended Audience :: DevelopersOperating System :: OS IndependentProgramming Language :: Python :: 3Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13Topic :: Scientific/Engineering :: Artificial IntelligenceTopic :: Software Development :: Debuggers

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package contains high obfuscation risks due to the use of eval and compile functions, which can be exploited for code injection. Additionally, the shell execution patterns and the low activity of the repository raise concerns about its reliability and safety.

High obfuscation risk due to eval and compile usage
Potential shell execution vulnerabilities
Low repository activity and unreliable maintainer metadata

Per-check LLM notes

Network: No network calls were detected, indicating no immediate risk from that perspective.
Shell: The presence of shell execution patterns may indicate the package is designed to run scripts or command-line interfaces, which could pose a risk if not properly sanitized or controlled.
Obfuscation: The use of eval and compile functions with dynamic code execution indicates potential for code obfuscation or injection attacks.
Credentials: No clear patterns indicative of credential harvesting were detected.
Metadata: The maintainer's lack of information and the repository's low activity suggest potential unreliability.

📦 Package Quality Overall: Medium (5.0/10)

✦ High Test Suite 9.0

Test suite present — 4 test file(s) found

Test runner config found: pyproject.toml
Test runner config found: conftest.py
4 test file(s) detected (e.g. conftest.py)

◈ Medium Documentation 5.0

Some documentation present

Detailed PyPI description (5572 chars)

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

○ Low Type Annotations 1.0

No type annotations detected

No type annotations, py.typed marker, or stub files detected

◈ Medium Multiple Contributors 6.0

Limited contributor diversity

2 unique contributor(s) across 59 commits in cknoll/aihook
Two distinct contributors found

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

⚠ Code Obfuscation score 8.0

Found 4 obfuscation pattern(s)

result = eval(code_obj, ns) if result is not None:
result = eval(last_expr_code, ns) if result is not Non
head_code = compile(head, "<agent>", "exec") expr_node = ast.Expression(body=l
code_obj = compile(command, "<agent>", "exec") exec(code_obj, ns) except

⚠ Shell / Subprocess Execution score 6.0

Found 3 shell execution pattern(s)

FERED"] = "1" proc = subprocess.Popen( [sys.executable, self.script], cwd=
CLI. cli_result = subprocess.run( [sys.executable, "-m", "aihook.cli", "--exi
FFERED"] = "1" proc = subprocess.Popen( [sys.executable, self.script], cwd=

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: domain.org>

✓ Suspicious Page Links

All external links appear legitimate

⚠ Git Repository History score 2.5

Git history flags: Repository has zero stars and zero forks

Repository has zero stars and zero forks

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with aihook

Create a fully-functional mini-app named 'AgentShell' using the Python package 'aihook'. This app will serve as an interactive console where users can embed and control AI agents through an intuitive command-line interface. Here are the steps and features to implement:

1. **Setup Environment**: Start by setting up a virtual environment and installing 'aihook' and any other necessary packages.
2. **Initialize AgentShell**: Develop a main script that initializes the interactive shell, loading default settings and configurations.
3. **Embedding Agents**: Implement functionality to load and manage multiple AI agents within the shell. Users should be able to add, remove, and switch between different agents easily.
4. **Interactive Commands**: Define a set of commands that users can input directly into the shell to interact with their selected agent. These commands might include querying data, performing tasks, or even training the agent.
5. **Customization Options**: Allow users to customize the appearance and behavior of the shell according to their preferences. This could involve changing colors, adding shortcuts, or modifying default commands.
6. **Logging and History**: Integrate logging capabilities to record user interactions and agent responses. Also, maintain a history of previous sessions for future reference.
7. **Security Measures**: Ensure that the shell includes basic security measures such as password protection and safe handling of sensitive information.
8. **Documentation**: Provide comprehensive documentation on how to use 'AgentShell', including setup instructions, command descriptions, and troubleshooting tips.

Throughout the development process, utilize 'aihook' to create an engaging and responsive user experience. For example, leverage its features to dynamically update the shell based on user input or agent feedback.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Medium (5.0/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue