anna-app-runtime-local

v0.2.0a8 safe
3.0
Low Risk

Local-dev in-memory runtime for Anna Apps. Wraps anna-app-core's dispatcher with an InMemoryWindowStore + WebSocket bridge.

πŸ€– AI Analysis

Final verdict: SAFE

The package shows no signs of network activity, shell execution, obfuscation, or credential harvesting. While the metadata suggests a potentially less active maintainer, there are no clear indications of malicious behavior.

  • No network calls
  • No shell execution
  • No obfuscation
  • No credential harvesting
Per-check LLM notes
  • Network: No network calls detected, which is normal if the package does not require external communication.
  • Shell: No shell execution patterns detected, indicating no immediate signs of executing system commands.
  • Obfuscation: No obfuscation patterns detected, indicating low risk of malicious intent.
  • Credentials: No credential harvesting patterns detected, indicating secure handling of secrets.
  • Metadata: The maintainer has only one package and lacks PyPI classifiers, suggesting low effort or a new/inactive account.

πŸ“¦ Package Quality Overall: Low (4.4/10)

✦ High Test Suite 9.0

Test suite present β€” 3 test file(s) found

  • Test runner config found: conftest.py
  • 3 test file(s) detected (e.g. conftest.py)
β—ˆ Medium Documentation 5.0

Some documentation present

  • Detailed PyPI description (2484 chars)
β—‹ Low Contributing Guide 2.0

No contributing guide or governance files found

  • No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found
β—ˆ Medium Type Annotations 5.0

Partial type annotation coverage

  • 57 type-annotated function signatures detected in source
β—‹ Low Multiple Contributors 1.0

Unable to verify contributor count: no GitHub repository found

  • No GitHub repository linked β€” contributor count unavailable

πŸ”¬ Heuristic Checks

βœ“ Outbound Network Calls

No suspicious network call patterns found

βœ“ Code Obfuscation

No obfuscation patterns detected

βœ“ Shell / Subprocess Execution

No shell execution patterns detected

βœ“ Credential Harvesting

No credential harvesting patterns detected

βœ“ Typosquatting

No typosquatting candidates detected

βœ“ Registered Email Domain

No author email provided

βœ“ Suspicious Page Links

All external links appear legitimate

βœ“ Git Repository History

No GitHub repository linked

  • No GitHub repository link found
⚠ Maintainer History score 4.0

2 maintainer concern(s) found

  • Author "Talent AI" appears to have only 1 package on PyPI (new or inactive account)
  • Package has no PyPI classifiers (low effort / metadata quality)
βœ“ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

πŸ’‘ AI App Starter Prompt

Use this prompt to build a project with anna-app-runtime-local 
Create a simple chat application using the 'anna-app-runtime-local' package. This application will allow users to send messages to each other in real-time within a browser window. The app should utilize the WebSocket bridge provided by 'anna-app-runtime-local' to enable seamless communication between clients. Here’s how you can approach building this application:

1. **Setup Environment**: Install the necessary packages including 'anna-app-runtime-local'. Ensure your development environment is set up to support Python and web technologies.
2. **Application Structure**: Define the structure of your application. Use Flask or a similar lightweight framework for handling HTTP requests and integrating 'anna-app-runtime-local'.
3. **WebSocket Integration**: Utilize 'anna-app-runtime-local' to establish a WebSocket connection. This will serve as the backbone for real-time messaging.
4. **Frontend Development**: Develop a simple HTML/CSS/JavaScript frontend that allows users to input their messages and view messages from others in real-time. The frontend should connect to the WebSocket server and handle sending/receiving messages accordingly.
5. **Backend Logic**: Implement backend logic using 'anna-app-runtime-local' to manage message storage and broadcasting among connected clients. Use the InMemoryWindowStore to keep track of messages and ensure they are delivered to all active users.
6. **Testing**: Thoroughly test the application to ensure that messages are sent and received correctly, and that the WebSocket connection remains stable during user interactions.
7. **Deployment Considerations**: Although this project focuses on local development, consider how such an application could be deployed in a production environment, noting any adjustments needed for scalability and security.