aksesa-cli

v1.44.3 suspicious
5.0
Medium Risk

Aksesa CLI is your next CLI agent.

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package has some concerning aspects, particularly its low maintainer activity and poor metadata quality, which raise doubts about its maintenance and support. However, the direct risks like network calls and obfuscation are minimal.

  • Low maintainer activity
  • Poor metadata quality
Per-check LLM notes
  • Network: No network calls detected.
  • Shell: Shell execution is observed but seems related to task management and cloning repositories, which could be part of normal package functionality.
  • Obfuscation: No obfuscation patterns detected in the provided code snippet.
  • Credentials: The code attempts to retrieve a password using keyring but does not show any suspicious behavior for credential harvesting.
  • Metadata: The package shows low maintainer activity and poor metadata quality, which may indicate it's not well-maintained.

📦 Package Quality Overall: Low (2.8/10)

○ Low Test Suite 1.0

No test suite detected

  • No test files or test-runner configuration detected
◈ Medium Documentation 5.0

Some documentation present

  • Detailed PyPI description (5725 chars)
○ Low Contributing Guide 2.0

No contributing guide or governance files found

  • No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found
◈ Medium Type Annotations 5.0

Partial type annotation coverage

  • 361 type-annotated function signatures detected in source
○ Low Multiple Contributors 1.0

Unable to verify contributor count: no GitHub repository found

  • No GitHub repository linked — contributor count unavailable

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution score 10.0

Found 6 shell execution pattern(s)

  • n"] = True process = subprocess.Popen(self._worker_command(task_dir), **kwargs) return pro
  • return subprocess.run( ["taskkill", "/PID", str(pid), "/T", "/
  • args.append("/F") subprocess.run( args, stdout=subprocess.DEVNULL, st
  • p / "repo")] result = subprocess.run( clone_cmd, capture_output=True,
  • r(project_dir)) result = subprocess.run(args) if result.returncode != 0: raise typer.Exi
  • "" try: result = subprocess.run( ["git", "rev-parse", "HEAD"], cwd=P
Credential Harvesting score 2.5

Found 1 credential access pattern(s)

  • None: try: raw = keyring.get_password(KEYRING_SERVICE, key) except Exception as exc: l
Typosquatting

No typosquatting candidates detected

Registered Email Domain

No author email provided

Suspicious Page Links

All external links appear legitimate

Git Repository History

No GitHub repository linked

  • No GitHub repository link found
Maintainer History score 6.0

3 maintainer concern(s) found

  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)
  • Package has no PyPI classifiers (low effort / metadata quality)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with aksesa-cli 
Create a command-line utility called 'TaskMaster' using the Python package 'aksesa-cli'. TaskMaster will serve as a personal task manager that allows users to manage their daily tasks efficiently. It should support adding new tasks, marking tasks as completed, listing all tasks, and deleting tasks. Additionally, it should allow users to categorize tasks into different lists (e.g., Work, Home, Personal). Each task should have a title, description, due date, and priority level.

The application should also provide a feature to search for tasks based on keywords and filter tasks by category, completion status, and due date.

To enhance user experience, implement a feature where users can set reminders for upcoming tasks via email notifications. This feature should use SMTP for sending emails and require the user to input their email credentials securely.

Use 'aksesa-cli' to handle the command-line interface functionalities such as parsing arguments, managing subcommands, and providing help messages. Ensure the application is well-documented, including a README file that explains how to install and run the application, along with examples of common usage scenarios.

💬 Discussion Feed

Leave a comment

No discussion yet. Be the first to share your thoughts!