artguru-mcp

v0.1.0 suspicious
4.0
Medium Risk

MCP server for the Artguru Open API Platform.

πŸ€– AI Analysis

Final verdict: SUSPICIOUS

The package shows low risks in network, shell, obfuscation, and credential handling, but its single release and lack of repository metadata raise suspicion.

  • Single release version
  • Lack of repository information
Per-check LLM notes
  • Network: The observed network call pattern is likely for legitimate functionality, possibly API interactions.
  • Shell: No shell execution patterns detected, indicating low risk.
  • Obfuscation: No obfuscation patterns detected, indicating low risk of malicious intent.
  • Credentials: No credential harvesting patterns detected, suggesting safe handling of secrets.
  • Metadata: The package appears suspicious due to the single release and lack of repository, but there's no clear evidence of malicious intent.

πŸ“¦ Package Quality Overall: Low (4.8/10)

✦ High Test Suite 9.0

Test suite present β€” 2 test file(s) found

  • Test runner config found: pyproject.toml
  • 2 test file(s) detected (e.g. test_client.py)
β—ˆ Medium Documentation 7.0

Some documentation present

  • Documentation URL: "Documentation" -> https://x6oynfyxq3.apifox.cn/authentication-7269269m0
  • Detailed PyPI description (2407 chars)
β—‹ Low Contributing Guide 2.0

No contributing guide or governance files found

  • No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found
β—ˆ Medium Type Annotations 5.0

Partial type annotation coverage

  • 33 type-annotated function signatures detected in source
β—‹ Low Multiple Contributors 1.0

Could not retrieve contributor data from GitHub

  • GitHub API error: 404

πŸ”¬ Heuristic Checks

⚠ Outbound Network Calls score 1.5

Found 1 network call pattern(s)

  • .base_url) async with httpx.AsyncClient( base_url=base_url, headers=headers,
βœ“ Code Obfuscation

No obfuscation patterns detected

βœ“ Shell / Subprocess Execution

No shell execution patterns detected

βœ“ Credential Harvesting

No credential harvesting patterns detected

βœ“ Typosquatting

No typosquatting candidates detected

βœ“ Registered Email Domain

No author email provided

βœ“ Suspicious Page Links

All external links appear legitimate

⚠ Git Repository History score 3.0

Repository not found (deleted or private)

  • Repository not found (deleted or private)
⚠ Maintainer History score 4.0

2 maintainer concern(s) found

  • Only one version has ever been released β€” brand new package
  • Author "Artguru MCP Maintainers" appears to have only 1 package on PyPI (new or inactive account)
βœ“ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

πŸ’‘ AI App Starter Prompt

Use this prompt to build a project with artguru-mcp 
Create a fully-functional mini-application named 'ArtGuruMCPManager' using the Python package 'artguru-mcp'. This application will serve as a user-friendly interface to manage and interact with the Artguru Open API Platform's MCP server. Here’s a detailed step-by-step guide on what your application should achieve:

1. **Setup and Configuration**: Begin by setting up a virtual environment and installing the 'artguru-mcp' package. Your application should also allow users to configure their API keys and other necessary credentials securely.

2. **User Interface**: Develop a simple yet intuitive command-line interface (CLI) or a graphical user interface (GUI) using a library like PyQt5 or Tkinter. Ensure the UI is responsive and user-friendly.

3. **API Interaction**: Utilize the 'artguru-mcp' package to interact with the MCP server. Implement functions to perform CRUD operations (Create, Read, Update, Delete) on resources available through the Artguru Open API Platform.

4. **Resource Management**: Allow users to manage various resources such as artworks, artists, collections, etc., directly from the application. Each resource type should have specific actions that can be performed based on its nature.

5. **Advanced Features**: Consider adding advanced features such as real-time updates, error handling mechanisms, and logging functionalities to enhance the application's robustness.

6. **Documentation and Testing**: Write comprehensive documentation explaining how to install and use the application. Also, include unit tests to ensure each feature works as expected.

7. **Deployment**: Finally, prepare your application for deployment. This could involve packaging it into an executable file for easy distribution or deploying it as a web service.

In summary, your goal is to create a versatile tool that leverages the power of 'artguru-mcp' to provide an enhanced experience for managing the Artguru Open API Platform's resources.

πŸ’¬ Discussion Feed

Leave a comment

No discussion yet. Be the first to share your thoughts!