arcade-core

v4.7.3 suspicious
6.0
Medium Risk

Arcade Core - Core library for Arcade platform

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package exhibits high risks related to shell execution and obfuscation techniques, which are concerning indicators. While there's no clear evidence of malicious intent, the combination of these signals raises suspicion.

  • High Shell risk
  • Moderate Obfuscation risk
Per-check LLM notes
  • Network: The use of HTTP requests to external endpoints may indicate legitimate API interactions but could also suggest unauthorized data transmission.
  • Shell: Executing shell commands can be necessary for some functionalities but poses a high risk as it allows arbitrary command execution which might be exploited for malicious purposes.
  • Obfuscation: The code pattern suggests an attempt to manipulate the sys.modules dictionary, which is often used for obfuscation or hiding functionality.
  • Credentials: No direct evidence of credential harvesting is present.
  • Metadata: The package has no associated GitHub repository and the maintainer information is incomplete, raising some suspicion but not conclusive evidence of malice.

📦 Package Quality Overall: Low (3.2/10)

○ Low Test Suite 1.0

No test suite detected

  • No test files or test-runner configuration detected
◈ Medium Documentation 5.0

Some documentation present

  • Detailed PyPI description (1016 chars)
○ Low Contributing Guide 4.0

No contributing guide or governance files found

  • Development Status classifier >= Beta
◈ Medium Type Annotations 5.0

Partial type annotation coverage

  • 178 type-annotated function signatures detected in source
○ Low Multiple Contributors 1.0

Unable to verify contributor count: no GitHub repository found

  • No GitHub repository linked — contributor count unavailable

🔬 Heuristic Checks

Outbound Network Calls score 9.0

Found 6 network call pattern(s)

  • th/cli_config" response = httpx.get(url, timeout=30) response.raise_for_status() return
  • n endpoint.""" response = httpx.post( cli_config.token_endpoint, data={
  • d=project_id ) return httpx.Client(transport=transport, **client_kwargs) def build_org_scoped
  • d=project_id ) return httpx.AsyncClient(transport=transport, **client_kwargs) from arcade_core.usag
  • n: response = httpx.get( whoami_url, headers
  • y: response = httpx.get( validate_url, heade
Code Obfuscation score 4.0

Found 2 obfuscation pattern(s)

  • if module.__name__ not in __import__("sys").modules: __import__("sys").modules[module.__nam
  • _("sys").modules: __import__("sys").modules[module.__name__] = module catalog.add_tool(
Shell / Subprocess Execution score 6.0

Found 3 shell execution pattern(s)

  • permanently inaccessible. subprocess.run( [ # noqa: S607 "icacls", s
  • en_startupinfo() subprocess.Popen( cmd, stdin=subprocess.DEVNU
  • ach from terminal subprocess.Popen( cmd, stdin=subprocess.DEVNU
Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

Email domain looks legitimate: arcade.dev>

Suspicious Page Links

All external links appear legitimate

Git Repository History

No GitHub repository linked

  • No GitHub repository link found
Maintainer History score 4.0

2 maintainer concern(s) found

  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with arcade-core 
Create a fully functional 2D arcade game using the 'arcade-core' Python package. Your game should be titled 'Space Invaders Redux'. The player controls a spaceship at the bottom of the screen, which can move left and right. The objective is to destroy incoming alien spaceships before they reach the bottom of the screen. Each destroyed alien awards points based on its type, and the game increases in difficulty as more levels are completed.

**Gameplay Features:**
- The player's spaceship should be able to shoot bullets upwards, which destroy aliens on contact.
- Aliens should move across the screen horizontally and periodically drop bombs downwards.
- Implement different types of aliens with varying point values and speeds.
- Include a health bar for the player's spaceship that decreases when hit by bombs or aliens.
- Add a score counter and a level indicator that increments as the player progresses.
- Introduce power-ups that randomly appear and grant temporary advantages like extra bullets or increased speed.
- The game should end if the player's spaceship's health reaches zero.

**Utilizing 'arcade-core':**
- Use 'arcade-core' to manage game window setup, rendering, and event handling.
- Leverage the package's sprite system for managing the player, aliens, bullets, bombs, and power-ups.
- Employ 'arcade-core' physics to handle collisions between objects and adjust their positions accordingly.
- Apply the package's animation capabilities to create smooth movement and visual effects.
- Utilize 'arcade-core' sound and music functionalities to enhance gameplay experience.

This project aims to showcase your ability to integrate various aspects of game development while effectively utilizing the 'arcade-core' package.

💬 Discussion Feed

Leave a comment

No discussion yet. Be the first to share your thoughts!