antchain-abc

v1.1.31 safe
3.0
Low Risk

Ant Chain DEMO SDK Library for Python

🤖 AI Analysis

Final verdict: SAFE

The package shows no signs of malicious behavior with low scores across all categories. The metadata score is slightly elevated due to the author's limited package history, but this alone is insufficient to classify the package as suspicious or malicious.

  • Low network and shell risks
  • No obfuscation or credential harvesting detected
  • Metadata risk slightly elevated due to author's limited package history
Per-check LLM notes
  • Network: No network calls detected, which is normal unless the package's functionality requires external communication.
  • Shell: No shell execution detected, indicating the package does not execute system commands without explicit user action.
  • Obfuscation: No obfuscation patterns detected, indicating low risk.
  • Credentials: No credential harvesting patterns detected, indicating low risk.
  • Metadata: The author has only one package, suggesting a new or less active account, which may warrant further investigation but does not conclusively indicate malicious intent.

📦 Package Quality Overall: Low (2.6/10)

○ Low Test Suite 1.0

No test suite detected

  • No test files or test-runner configuration detected
○ Low Documentation 1.0

No documentation detected

  • No documentation URL, doc files, or meaningful description found
○ Low Contributing Guide 4.0

No contributing guide or governance files found

  • Development Status classifier >= Beta
○ Low Type Annotations 1.0

No type annotations detected

  • No type annotations, py.typed marker, or stub files detected
◈ Medium Multiple Contributors 6.0

Limited contributor diversity

  • 2 unique contributor(s) across 100 commits in alipay/antchain-openapi-prod-sdk
  • Two distinct contributors found

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution

No shell execution patterns detected

Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

Email domain looks legitimate: alibabacloud.com

Suspicious Page Links

All external links appear legitimate

Git Repository History

Repository alipay/antchain-openapi-prod-sdk appears legitimate

Maintainer History score 2.0

1 maintainer concern(s) found

  • Author "Ant Chain SDK" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with antchain-abc 
Build a simple Python application using the antchain-abc package to demonstrate its core features.

💬 Discussion Feed

Leave a comment

No discussion yet. Be the first to share your thoughts!