AI Analysis
Final verdict: SUSPICIOUS
The package appears to be incomplete with low maintainer activity, raising concerns about its legitimacy and potential maintenance issues. However, it does not exhibit any direct malicious activities.
- Low maintainer activity and incomplete metadata.
- No detected malicious activities such as network calls, shell execution, or obfuscation.
Per-check LLM notes
- Network: No network calls detected, which is normal for packages not requiring external API interactions.
- Shell: No shell execution patterns detected, indicating no risk of command injection or system compromise.
- Obfuscation: No obfuscation patterns detected, indicating low risk.
- Credentials: No credential harvesting patterns detected, indicating low risk.
- Metadata: The package shows signs of low maintainer activity and incomplete metadata, which raises suspicion but does not conclusively indicate malice.
Package Quality Overall: Low (2.4/10)
○ Low
Test Suite
1.0
No test suite detected
No test files or test-runner configuration detected
◈ Medium
Documentation
7.0
Some documentation present
Documentation URL: "Documentation" -> https://apimatic.ioDetailed PyPI description (9652 chars)
○ Low
Contributing Guide
2.0
No contributing guide or governance files found
No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found
○ Low
Type Annotations
1.0
No type annotations detected
No type annotations, py.typed marker, or stub files detected
○ Low
Multiple Contributors
1.0
Unable to verify contributor count: no GitHub repository found
No GitHub repository linked — contributor count unavailable
Heuristic Checks
Outbound Network Calls
No suspicious network call patterns found
Code Obfuscation
No obfuscation patterns detected
Shell / Subprocess Execution
No shell execution patterns detected
Credential Harvesting
No credential harvesting patterns detected
Typosquatting
No typosquatting candidates detected
Registered Email Domain
Email domain looks legitimate: apimatic.io>
Suspicious Page Links
All external links appear legitimate
Git Repository History
No GitHub repository linked
No GitHub repository link found
Maintainer History
score 8.0
4 maintainer concern(s) found
Only one version has ever been released — brand new packageAuthor name is missing or very shortAuthor "" appears to have only 1 package on PyPI (new or inactive account)Package has no PyPI classifiers (low effort / metadata quality)
Known CVE Vulnerabilities
No known vulnerabilities found in OSV database.
AI App Starter Prompt
Use this prompt to build a project with apimatic-plaid-sdk
Create a financial dashboard application using the Python package 'apimatic-plaid-sdk'. This application will allow users to connect their bank accounts via Plaid and visualize their financial data in a user-friendly manner. The application should include the following core functionalities: 1. User Authentication: Implement a simple login system where users can create accounts or log in to access their financial data. 2. Bank Account Connection: Utilize the 'apimatic-plaid-sdk' to integrate with Plaid's API, allowing users to link their bank accounts securely. 3. Financial Data Visualization: Display key financial metrics such as account balances, recent transactions, and categorization of expenses. 4. Custom Reports: Allow users to generate custom reports based on specific criteria, like monthly spending habits or savings trends. 5. Security Measures: Ensure all data transmission and storage is secure, adhering to best practices for handling sensitive financial information. The 'apimatic-plaid-sdk' package will be used to authenticate users with Plaid, retrieve financial data from connected bank accounts, and handle any necessary API calls for data manipulation and retrieval. Your task is to outline the steps needed to set up this application, including setting up the environment, configuring the SDK, and implementing each feature mentioned above.
💬 Discussion Feed
No discussion yet. Be the first to share your thoughts!
Report Abuse / Security Issue