askfaro-cli

v0.3.0 suspicious
5.0
Medium Risk

CLI for the Faro AI tool marketplace

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package has moderate risks due to low maintainer activity and poor metadata quality, but no direct evidence of malicious behavior was found.

  • Low maintainer activity and poor metadata quality
  • No direct evidence of malicious behavior
Per-check LLM notes
  • Network: The network calls observed are typical for packages that require internet access to perform their functions, such as fetching data or logging in.
  • Shell: No shell execution patterns were detected, indicating the package does not execute external commands.
  • Obfuscation: No obfuscation patterns detected, indicating low risk.
  • Credentials: No credential harvesting patterns detected, indicating low risk.
  • Metadata: The package shows signs of low maintainer activity and poor metadata quality, which may indicate a lower level of trustworthiness.

📦 Package Quality Overall: Low (4.4/10)

✦ High Test Suite 9.0

Test suite present — 15 test file(s) found

  • Test runner config found: conftest.py
  • Test runner config found: pyproject.toml
  • 15 test file(s) detected (e.g. conftest.py)
◈ Medium Documentation 5.0

Some documentation present

  • Detailed PyPI description (10063 chars)
○ Low Contributing Guide 2.0

No contributing guide or governance files found

  • No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found
◈ Medium Type Annotations 5.0

Partial type annotation coverage

  • 105 type-annotated function signatures detected in source
○ Low Multiple Contributors 1.0

Unable to verify contributor count: no GitHub repository found

  • No GitHub repository linked — contributor count unavailable

🔬 Heuristic Checks

Outbound Network Calls score 4.5

Found 3 network call pattern(s)

  • erbose self._client = httpx.Client( base_url=self._base_url, headers={"
  • ip("/") try: with httpx.Client(timeout=30.0) as http: login_resp = http.post(
  • turn try: resp = httpx.get(url, timeout=15.0, follow_redirects=True) except httpx.H
Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution

No shell execution patterns detected

Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

No author email provided

Suspicious Page Links

All external links appear legitimate

Git Repository History

No GitHub repository linked

  • No GitHub repository link found
Maintainer History score 6.0

3 maintainer concern(s) found

  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)
  • Package has no PyPI classifiers (low effort / metadata quality)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with askfaro-cli 
Create a Python-based utility named 'FaroAssistant' that leverages the 'askfaro-cli' package to streamline the interaction with the Faro AI tool marketplace. This utility should provide users with an easy-to-use interface to discover, install, and manage AI tools available on the platform. Here are the key functionalities your application should include:

1. **Tool Discovery**: Implement a feature that allows users to search for AI tools based on keywords, categories, or tags. The application should fetch and display detailed information about each tool, such as its description, author, and usage examples.

2. **Installation Management**: Enable users to directly install tools from the utility. Ensure that the installation process is seamless and includes error handling for common issues like missing dependencies.

3. **Tool Execution**: Once installed, users should be able to execute these tools through the utility. Provide options for configuring parameters and viewing output directly within the application.

4. **Version Control**: Allow users to check the version of installed tools and update them if newer versions are available.

5. **User Preferences**: Implement a feature where users can save their preferences, such as favorite tools or specific configurations, for future sessions.

To achieve these functionalities, you will need to utilize the 'askfaro-cli' package effectively. Start by installing it via pip and then explore its API documentation to understand how to interact with the Faro AI marketplace programmatically. Your application should be well-documented, with clear instructions on how to run it and use its features. Additionally, ensure that your code adheres to best practices in Python development, including proper exception handling and clean, modular code structure.

💬 Discussion Feed

Leave a comment

No discussion yet. Be the first to share your thoughts!