auto-chart-engine

v2.0.1 suspicious
4.0
Medium Risk

This project streamlines drum charting for Clone Hero - the free PC rhythm game inspired by Guitar Hero/Rock Band. It generates highly accurate, playable drum charts directly from MIDI files. The engine dramatically reduces the time and effort needed to create custom drum charts to enable efficient creation of multiple songs.

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package shows signs of potential misuse due to network and shell risks, though there is no strong evidence of malicious intent. Further investigation into the necessity of external command execution and sound font download is recommended.

  • Network risk due to downloading a sound font file
  • Shell risk from executing external commands
Per-check LLM notes
  • Network: The package downloads a sound font file, which seems related to its functionality but should be verified if it aligns with the package's description and purpose.
  • Shell: Executing external commands like fluidsynth suggests that the package is intended to convert MIDI files to WAV format, which is consistent with its name 'auto-chart-engine'. However, this could pose a risk if the input to these commands can be controlled by untrusted sources.
  • Obfuscation: No obfuscation patterns detected, suggesting legitimate use or absence of obfuscation techniques.
  • Credentials: No credential harvesting patterns detected, indicating no immediate risk of secret or credential theft.
  • Metadata: The maintainer has only one package, which might indicate a new or less active account, raising some suspicion but not enough to conclusively determine malice.

📦 Package Quality Overall: Low (4.2/10)

○ Low Test Suite 1.0

No test suite detected

  • No test files or test-runner configuration detected
◈ Medium Documentation 5.0

Some documentation present

  • Detailed PyPI description (3647 chars)
○ Low Contributing Guide 4.0

No contributing guide or governance files found

  • Development Status classifier >= Beta
◈ Medium Type Annotations 5.0

Partial type annotation coverage

  • 3 type-annotated function signatures (partial)
◈ Medium Multiple Contributors 6.0

Limited contributor diversity

  • 2 unique contributor(s) across 3 commits in ryan-w-roche/auto-chart-engine
  • Two distinct contributors found

🔬 Heuristic Checks

Outbound Network Calls score 1.5

Found 1 network call pattern(s)

  • use...[/cyan]") urllib.request.urlretrieve(SOUNDFONT_URL, sound_font) print("[
Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution score 2.0

Found 1 shell execution pattern(s)

  • Convert MIDI to WAV subprocess.run( [ "fluidsynth",
Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

No author email provided

Suspicious Page Links

All external links appear legitimate

Git Repository History

Repository ryan-w-roche/auto-chart-engine appears legitimate

Maintainer History score 2.0

1 maintainer concern(s) found

  • Author "Ryan Roche, Bryant Vencill" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with auto-chart-engine 
Develop a fully-functional mini-app called 'DrumChartMaster' that leverages the 'auto-chart-engine' package to simplify the process of creating custom drum charts for Clone Hero, a popular rhythm game. DrumChartMaster should allow users to upload MIDI files and automatically generate accurate drum charts suitable for playing in Clone Hero. Here are the steps and features your application should include:

1. **User Interface**: Design a clean and intuitive web interface where users can easily upload their MIDI files.
2. **MIDI File Processing**: Utilize the 'auto-chart-engine' package to process the uploaded MIDI files and convert them into drum charts compatible with Clone Hero.
3. **Customization Options**: Provide users with customization options such as selecting different drum kits, adjusting timing, and setting difficulty levels.
4. **Visualization**: Display a preview of the generated drum chart within the app, allowing users to see the final output before downloading.
5. **Download Functionality**: Enable users to download the generated drum charts in a format that Clone Hero supports.
6. **Error Handling**: Implement robust error handling to manage issues like unsupported file formats or corrupted MIDI files.
7. **Feedback Mechanism**: Include a feedback system where users can report any issues or suggest improvements, helping to continuously enhance the app.
8. **Documentation**: Prepare comprehensive documentation detailing how to use DrumChartMaster effectively and any limitations of the current version.

By following these guidelines, you will create a valuable tool for the rhythm gaming community, significantly reducing the time and effort required to produce high-quality drum charts.

💬 Discussion Feed

Leave a comment

No discussion yet. Be the first to share your thoughts!