ariel-facility

v0.25.0 suspicious
7.0
High Risk

Extract HK from MySQL Facility Database for Ariel

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package exhibits high risks related to network and shell operations, with moderate obfuscation risks. While there's no clear evidence of credential theft, the overall risk profile is elevated due to potential for unauthorized command execution and network vulnerabilities.

  • High network risk due to zmq sockets
  • Significant shell risk from subprocess calls
  • Moderate obfuscation risk associated with pickle usage
Per-check LLM notes
  • Network: The use of zmq sockets to connect to an external endpoint suggests potential unauthorized communication.
  • Shell: Subprocess calls to start and stop services remotely indicate possible execution of arbitrary commands, which is a significant security risk.
  • Obfuscation: The use of pickle for deserializing commands received over a network connection suggests potential risk as it can be exploited for remote code execution.
  • Credentials: No clear patterns indicative of credential harvesting were found.
  • Metadata: The author has only one package and lacks PyPI classifiers, indicating low effort or new/inactive status.

📦 Package Quality Overall: Medium (5.0/10)

○ Low Test Suite 1.0

No test suite detected

  • No test files or test-runner configuration detected
◈ Medium Documentation 7.0

Some documentation present

  • Documentation URL: "Documentation" -> https://ivs-kuleuven.github.io/cgse/
  • Detailed PyPI description (3836 chars)
○ Low Contributing Guide 2.0

No contributing guide or governance files found

  • No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found
◈ Medium Type Annotations 5.0

Partial type annotation coverage

  • 7 type-annotated function signatures (partial)
✦ High Multiple Contributors 10.0

Active multi-contributor project

  • 5 unique contributor(s) across 100 commits in IvS-KULeuven/cgse
  • Active community — 5 or more distinct contributors

🔬 Heuristic Checks

Outbound Network Calls score 1.5

Found 1 network call pattern(s)

  • x.socket(zmq.REQ) socket.connect(endpoint) socket.send(pickle.dumps(command_requ
Code Obfuscation score 4.0

Found 2 obfuscation pattern(s)

  • nder.recv() command = pickle.loads(pickle_string) if command.lower() == "quit":
  • () response = pickle.loads(response) else: response = {"err
Shell / Subprocess Execution score 4.0

Found 2 shell execution pattern(s)

  • l.facility.hk", "start"] subprocess.Popen(cmd, stdout=out, stderr=out, stdin=subprocess.DEVNULL, close
  • el.facility.hk", "stop"] subprocess.Popen(cmd, stdout=out, stderr=out, stdin=subprocess.DEVNULL, close
Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

Email domain looks legitimate: kuleuven.be>

Suspicious Page Links

All external links appear legitimate

Git Repository History

Repository IvS-KULeuven/cgse appears legitimate

Maintainer History score 4.0

2 maintainer concern(s) found

  • Author "IVS KU Leuven" appears to have only 1 package on PyPI (new or inactive account)
  • Package has no PyPI classifiers (low effort / metadata quality)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with ariel-facility 
Build a simple Python application using the ariel-facility package to demonstrate its core features.

💬 Discussion Feed

Leave a comment

No discussion yet. Be the first to share your thoughts!