Package Metadata

Author: Anduril Industries
Email: [email protected]
PyPI: anduril-lattice-sdk
Python: <4.0,>=3.10
Versions: 33 releases
First release: 10 Dec 2024, 02:26 UTC
Analysed: 07 Jun 2026, 03:37 UTC
Source files: 61 .py files scanned

Project Links

Classifiers

Intended Audience :: DevelopersOperating System :: MacOSOperating System :: Microsoft :: WindowsOperating System :: OS IndependentOperating System :: POSIXOperating System :: POSIX :: LinuxProgramming Language :: PythonProgramming Language :: Python :: 3Programming Language :: Python :: 3.10Programming Language :: Python :: 3.11

🤖 AI Analysis

Final verdict: SAFE

The package exhibits low risks across all categories except for a slight concern regarding network and metadata risks due to HTTP requests and a single non-HTTPS external link. There is no evidence of malicious intent.

Low network risk with legitimate HTTP requests
Single non-HTTPS external link

Per-check LLM notes

Network: The network call patterns indicate the package is making HTTP requests which may be for legitimate purposes such as API calls or fetching remote resources.
Shell: No shell execution patterns were detected, suggesting there is no direct risk associated with executing system commands.
Obfuscation: No obfuscation patterns detected, indicating low risk of malicious activity.
Credentials: No credential harvesting patterns detected, indicating low risk of malicious activity.
Metadata: The package has one non-HTTPS external link which could be a potential risk. The maintainer has only one package, indicating a possibly new or less active account.

📦 Package Quality Overall: Medium (6.0/10)

◈ Medium Test Suite 6.0

Partial test coverage signals detected

Test runner config found: pyproject.toml

◈ Medium Documentation 7.0

Some documentation present

Documentation URL: "Documentation" -> https://developer.anduril.com
Detailed PyPI description (7058 chars)

○ Low Contributing Guide 2.0

No contributing guide or governance files found

No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found

◈ Medium Type Annotations 7.0

Partial type annotation coverage

Classifier: Typing :: Typed
201 type-annotated function signatures detected in source

✦ High Multiple Contributors 8.0

Active multi-contributor project

4 unique contributor(s) across 44 commits in anduril/lattice-sdk-python
Small but multi-author team (3–4 contributors)

🔬 Heuristic Checks

⚠ Outbound Network Calls score 6.0

Found 4 network call pattern(s)

not None else httpx.Client(timeout=_defaulted_timeout, follow_redirects=follow_redirect
not None else httpx.Client(timeout=_defaulted_timeout), timeout=_defaul
None else httpx.Client(timeout=_defaulted_timeout, follow_redirects=follow_redirect
None else httpx.Client(timeout=_defaulted_timeout), timeout=_de

✓ Code Obfuscation

No obfuscation patterns detected

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: anduril.com

⚠ Suspicious Page Links score 2.0

Found 1 suspicious link(s) on the package page

Non-HTTPS external link: http://my.test.proxy.example.com

✓ Git Repository History

Repository anduril/lattice-sdk-python appears legitimate

⚠ Maintainer History score 2.0

1 maintainer concern(s) found

Author "Anduril Industries" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with anduril-lattice-sdk

Create a Python-based mini-application called 'LatticeExplorer' that leverages the 'anduril-lattice-sdk' package to interact with the Anduril Lattice API. This application will serve as a tool for developers and researchers to explore and manage their data stored within the Anduril Lattice platform. The main functionalities of 'LatticeExplorer' include:

1. **Authentication**: Implement a secure method for users to authenticate using their Anduril Lattice credentials.
2. **Data Retrieval**: Fetch data from various endpoints provided by the Anduril Lattice API, such as datasets, models, and projects.
3. **Data Visualization**: Integrate basic visualization capabilities to display fetched data in a user-friendly manner.
4. **Data Management**: Allow users to perform CRUD (Create, Read, Update, Delete) operations on their data stored within the Anduril Lattice platform.
5. **Interactive Shell**: Develop an interactive shell where users can execute commands directly to query and manipulate their data.
6. **Export Functionality**: Enable users to export retrieved data into common file formats like CSV or JSON for further analysis outside the application.
7. **Documentation and Help**: Provide comprehensive documentation and a help command within the application to guide users through its features and usage.

The 'anduril-lattice-sdk' package will be central to the implementation of the data retrieval and management functionalities. It provides the necessary HTTP client utilities to communicate with the Anduril Lattice API, allowing for seamless interaction with the platform's resources. Your task is to design and implement 'LatticeExplorer', ensuring it is user-friendly, efficient, and capable of handling large datasets.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Medium (6.0/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue