arxiv-research-mcp

v1.0.0 suspicious
4.0
Medium Risk

An MCP server exposing arXiv research tools (search, abstracts, author lookup, trending) to LLM agents.

πŸ€– AI Analysis

Final verdict: SUSPICIOUS

The package shows no immediate signs of malicious activity, but the high metadata risk score due to suspicious activity and lack of maintainer details raises concerns about its trustworthiness.

  • High metadata risk score
  • Missing maintainer details
Per-check LLM notes
  • Network: No network calls detected, which is normal for a package focused on local processing.
  • Shell: No shell executions detected, indicating the package does not perform any system-level operations.
  • Obfuscation: No obfuscation patterns detected, indicating low risk.
  • Credentials: No credential harvesting patterns detected, indicating low risk.
  • Metadata: Suspiciously active but with minimal community engagement and missing maintainer details.

πŸ“¦ Package Quality Overall: Medium (5.4/10)

✦ High Test Suite 9.0

Test suite present β€” 3 test file(s) found

  • 3 test file(s) detected (e.g. client_test.py)
β—ˆ Medium Documentation 5.0

Some documentation present

  • Detailed PyPI description (10773 chars)
β—‹ Low Contributing Guide 4.0

No contributing guide or governance files found

  • Development Status classifier >= Beta
β—ˆ Medium Type Annotations 7.0

Partial type annotation coverage

  • Type checker (mypy / pyright / pytype) referenced in project
  • 9 type-annotated function signatures (partial)
β—‹ Low Multiple Contributors 2.0

Single-author or unverifiable project

  • 1 unique contributor(s) across 6 commits in JananiV07/arxiv-mcp-server
  • Single author with few commits β€” possibly a personal or throwaway project

πŸ”¬ Heuristic Checks

βœ“ Outbound Network Calls

No suspicious network call patterns found

βœ“ Code Obfuscation

No obfuscation patterns detected

βœ“ Shell / Subprocess Execution

No shell execution patterns detected

βœ“ Credential Harvesting

No credential harvesting patterns detected

βœ“ Typosquatting

No typosquatting candidates detected

βœ“ Registered Email Domain

Email domain looks legitimate: gmail.com>

⚠ Suspicious Page Links score 2.0

Found 1 suspicious link(s) on the package page

  • Non-HTTPS external link: http://arxiv.org/abs/1706.03762v7
⚠ Git Repository History score 5.0

Git history flags: Repository has zero stars and zero forks

  • Repository has zero stars and zero forks
  • All 6 commits happened within 24 hours
⚠ Maintainer History score 6.0

3 maintainer concern(s) found

  • Only one version has ever been released β€” brand new package
  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)
βœ“ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

πŸ’‘ AI App Starter Prompt

Use this prompt to build a project with arxiv-research-mcp 
Your task is to develop a mini-application named 'ArxivInsight' using the Python package 'arxiv-research-mcp'. This application will serve as a command-line interface (CLI) tool for researchers and students to easily access and interact with arXiv research papers. Here’s a detailed breakdown of what your application should accomplish:

1. **Setup**: Ensure you have Python installed on your system. Install the required packages including 'arxiv-research-mcp' via pip.
2. **Search Functionality**: Implement a feature that allows users to search for papers based on keywords. Users should be able to input specific terms like 'quantum computing' and get a list of relevant papers.
3. **Abstract Retrieval**: Once a user has found a paper they're interested in, they should be able to view its abstract. This feature will fetch and display the abstract of a selected paper.
4. **Author Lookup**: Enable users to look up authors by name. Upon searching for an author, the app should return a list of papers written by that author.
5. **Trending Papers**: Provide a feature to show trending papers on arXiv. This could be based on recent submissions or popular searches.
6. **Interactive CLI**: Design the application to be interactive, allowing users to navigate through these features seamlessly without needing to restart the program each time.
7. **Output Formatting**: Ensure all outputs are well-formatted and easy to read. Consider adding color-coding for different types of information.
8. **Error Handling**: Implement robust error handling to manage scenarios such as incorrect inputs or no results found from the search.
9. **User Guide**: Include a brief user guide within the application that explains how to use each feature.

The 'arxiv-research-mcp' package provides the backend functionality for searching papers, fetching abstracts, looking up authors, and accessing trending papers. Your task is to integrate this package into a cohesive, user-friendly CLI application that makes it easy for anyone to explore arXiv's vast repository of scientific papers.

πŸ’¬ Discussion Feed

Leave a comment

No discussion yet. Be the first to share your thoughts!