AI Analysis
Final verdict: SAFE
The package shows no signs of malicious intent or unusual behavior. The risk score is kept low due to the maintainer's limited package history and incomplete metadata.
- No network or shell risks detected.
- Low risk of obfuscation and credential harvesting.
Per-check LLM notes
- Network: No network calls detected.
- Shell: Subprocess calls appear to be related to package functionality rather than malicious activity.
- Obfuscation: No obfuscation patterns detected, indicating low risk.
- Credentials: No credential harvesting patterns detected, indicating low risk.
- Metadata: Low risk due to lack of suspicious activities, but caution is advised as the maintainer has only one package and lacks detailed metadata.
Package Quality Overall: Medium (6.0/10)
◈ Medium
Test Suite
6.0
Partial test coverage signals detected
Test runner config found: pyproject.toml
◈ Medium
Documentation
7.0
Some documentation present
Documentation URL: "Documentation" -> https://ivs-kuleuven.github.io/cgse/Brief PyPI description (481 chars)
○ Low
Contributing Guide
2.0
No contributing guide or governance files found
No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found
◈ Medium
Type Annotations
5.0
Partial type annotation coverage
159 type-annotated function signatures detected in source
✦ High
Multiple Contributors
10.0
Active multi-contributor project
5 unique contributor(s) across 100 commits in IvS-KULeuven/cgseActive community — 5 or more distinct contributors
Heuristic Checks
Outbound Network Calls
No suspicious network call patterns found
Code Obfuscation
No obfuscation patterns detected
Shell / Subprocess Execution
score 10.0
Found 5 shell execution pattern(s)
cmd.append("--simulator") subprocess.Popen( cmd, stdout=out, stderr=out,g("tgf4000_cs.stop.log") subprocess.Popen( [sys.executable, "-m", "egse.arbitrary_wave_generatentifier. """ proc = subprocess.Popen( [sys.executable, "-m", "egse.arbitrary_wave_generat"tgf4000_sim.start.log") subprocess.Popen( [sys.executable, "-m", "egse.arbitrary_wave_generat("tgf4000_sim.stop.log") subprocess.Popen( [sys.executable, "-m", "egse.arbitrary_wave_generat
Credential Harvesting
No credential harvesting patterns detected
Typosquatting
No typosquatting candidates detected
Registered Email Domain
Email domain looks legitimate: kuleuven.be>
Suspicious Page Links
All external links appear legitimate
Git Repository History
Repository IvS-KULeuven/cgse appears legitimate
Maintainer History
score 4.0
2 maintainer concern(s) found
Author "IvS KU Leuven" appears to have only 1 package on PyPI (new or inactive account)Package has no PyPI classifiers (low effort / metadata quality)
Known CVE Vulnerabilities
No known vulnerabilities found in OSV database.
AI App Starter Prompt
Use this prompt to build a project with aim_tti_awg
Create a user-friendly graphical interface application using Python's Tkinter library that controls an Aim-TTi TGF4000 Arbitrary Wave Generator via the 'aim_tti_awg' package. This application should allow users to easily configure and generate arbitrary waveforms on the TGF4000 device. Key functionalities include setting the frequency, amplitude, and waveform type (sine, square, triangle, etc.), as well as the ability to upload custom waveform data from a CSV file. Additionally, implement real-time plotting of the generated waveform using Matplotlib for visualization purposes. Ensure the application provides feedback on the status of the device and any errors encountered during operation. The goal is to make waveform generation and testing accessible to non-expert users while leveraging the advanced capabilities of the TGF4000 through the 'aim_tti_awg' package.