aw-cli

v2.3.2 suspicious
6.0
Medium Risk

Guarda anime dal terminale e molto altro!

πŸ€– AI Analysis

Final verdict: SUSPICIOUS

The package has moderate risks due to network and shell execution vulnerabilities, despite no direct evidence of malicious intent.

  • High shell risk due to 'shell=True' usage
  • Moderate network risk from potential localhost interactions
Per-check LLM notes
  • Network: Network calls to localhost may be legitimate for local service interaction but could also indicate unusual behavior.
  • Shell: Execution of arbitrary commands with 'shell=True' poses significant risk and is often associated with malicious activities.
  • Obfuscation: No obfuscation patterns detected, indicating low risk.
  • Credentials: No credential harvesting patterns detected, indicating low risk.
  • Metadata: The package shows low maintenance and author engagement, but lacks clear indicators of malicious intent.

πŸ“¦ Package Quality Overall: Medium (5.8/10)

✦ High Test Suite 9.0

Test suite present β€” 9 test file(s) found

  • Test runner config found: conftest.py
  • Test runner config found: pyproject.toml
  • 9 test file(s) detected (e.g. conftest.py)
β—ˆ Medium Documentation 5.0

Some documentation present

  • Detailed PyPI description (4566 chars)
β—‹ Low Contributing Guide 2.0

No contributing guide or governance files found

  • No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found
β—ˆ Medium Type Annotations 5.0

Partial type annotation coverage

  • 82 type-annotated function signatures detected in source
✦ High Multiple Contributors 8.0

Active multi-contributor project

  • 4 unique contributor(s) across 100 commits in fexh10/aw-cli
  • Small but multi-author team (3–4 contributors)

πŸ”¬ Heuristic Checks

⚠ Outbound Network Calls score 7.5

Found 5 network call pattern(s)

  • '{escaped}')" req = urllib.request.Request( f"http://localhost:{self._port}",
  • try: with urllib.request.urlopen(req, timeout=3): pass except
  • zf: Fzf): with patch("urllib.request.urlopen") as mock_urlopen: mock_urlopen.return_v
  • orato.""" with patch("urllib.request.urlopen", side_effect=OSError("refused")): # Non
  • ication/json'} response = httpx.post('https://graphql.anilist.co', headers=headers, json={'query'
βœ“ Code Obfuscation

No obfuscation patterns detected

⚠ Shell / Subprocess Execution score 10.0

Found 5 shell execution pattern(s)

  • -- {args}''' result = subprocess.run( command, shell=True, capture_output=True, text=
  • os_name == "Android": subprocess.run( f'am start --user 0 -a android.intent.action.VI
  • eep-open", ] result = subprocess.run(command, capture_output=True, text=True, check=False) i
  • ) return True, 0 subprocess.run( f'{ut.config_data["player"]["path"]} "{ep_url}" --m
  • name == "Darwin": subprocess.run( f"open '{link}'", shell=Tru
βœ“ Credential Harvesting

No credential harvesting patterns detected

βœ“ Typosquatting

No typosquatting candidates detected

βœ“ Registered Email Domain

No author email provided

βœ“ Suspicious Page Links

All external links appear legitimate

βœ“ Git Repository History

Repository fexh10/aw-cli appears legitimate

⚠ Maintainer History score 6.0

3 maintainer concern(s) found

  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)
  • Package has no PyPI classifiers (low effort / metadata quality)
βœ“ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

πŸ’‘ AI App Starter Prompt

Use this prompt to build a project with aw-cli 
Create a terminal-based anime streaming application using the 'aw-cli' package. This application will allow users to browse, search, and stream anime directly from their command line interface. Here’s a detailed breakdown of what your application should include:

1. **User Interface**: Design a simple yet effective command-line interface that allows users to interact with the application. Provide commands such as `list`, `search`, `stream`, and `exit`.
2. **Anime List**: Implement functionality to fetch and display a list of available anime series from the 'aw-cli' package. Users should be able to view the names, genres, and brief descriptions of the anime.
3. **Search Functionality**: Enable users to search for specific anime titles using keywords. The application should return matching results based on the user input.
4. **Streaming Capabilities**: Once an anime title is selected, the application should use the 'aw-cli' package to stream the episodes directly from the terminal. Ensure that the streaming process is smooth and responsive.
5. **Episode Navigation**: Allow users to navigate through different episodes of the chosen anime. They should be able to start from the first episode and progress forward or backward.
6. **Customization Options**: Provide options for users to customize their viewing experience, such as adjusting volume levels, changing playback speed, and selecting subtitles.
7. **Error Handling**: Implement robust error handling to manage issues like network failures, unsupported commands, and unavailable content.
8. **Help Documentation**: Include a help menu that explains all available commands and how to use them effectively.

Your task is to design and develop this application from scratch, ensuring that it integrates seamlessly with the 'aw-cli' package. Pay attention to the user experience and make sure the application is intuitive and easy to use.

πŸ’¬ Discussion Feed

Leave a comment

No discussion yet. Be the first to share your thoughts!