attb

v0.1.0 malicious
8.0
High Risk

Pytest plugin hooks for the attb framework

🤖 AI Analysis

Final verdict: MALICIOUS

The package is assessed as malicious due to its strong indicators of typosquatting, targeting the legitimate 'attrs' package, and the absence of any maintainer history or useful description.

  • Typosquatting attempt
  • Lack of maintainer history
Per-check LLM notes
  • Network: No network calls detected, which is normal if the package does not require internet access.
  • Shell: No shell execution patterns detected, indicating no immediate signs of executing system commands.
  • Obfuscation: No obfuscation patterns detected, indicating low risk.
  • Credentials: No credential harvesting patterns detected, indicating low risk.
  • Metadata: The package shows signs of being potentially malicious due to the typosquatting attempt and lack of maintainer history.
  • Typosquatting target: attrs

📦 Package Quality Overall: Low (3.6/10)

✦ High Test Suite 9.0

Test suite present — 1 test file(s) found

  • Test runner config found: pyproject.toml
  • 1 test file(s) detected (e.g. test_plugin.py)
  • Classifier: Framework :: Pytest
○ Low Documentation 1.0

No documentation detected

  • No documentation URL, doc files, or meaningful description found
○ Low Contributing Guide 2.0

No contributing guide or governance files found

  • No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found
◈ Medium Type Annotations 5.0

Partial type annotation coverage

  • 6 type-annotated function signatures (partial)
○ Low Multiple Contributors 1.0

Could not retrieve contributor data from GitHub

  • GitHub API error: 404

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution

No shell execution patterns detected

Credential Harvesting

No credential harvesting patterns detected

Typosquatting score 3.0

Possible typosquat of: attrs

  • "attb" is 2 edit(s) from "attrs"
Registered Email Domain

No author email provided

Suspicious Page Links

All external links appear legitimate

Git Repository History score 3.0

Repository not found (deleted or private)

  • Repository not found (deleted or private)
Maintainer History score 6.0

3 maintainer concern(s) found

  • Only one version has ever been released — brand new package
  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💬 Discussion Feed

Leave a comment

No discussion yet. Be the first to share your thoughts!