AI Analysis
Final verdict: SUSPICIOUS
The package has a moderate risk score due to its metadata characteristics, including recent creation and lack of maintainer history, which raise suspicion but do not definitively indicate malicious activity.
- recent package creation
- missing maintainer history
Per-check LLM notes
- Network: The use of requests to make HTTP GET calls is common and does not inherently suggest malicious intent; however, the lack of context about the purpose of these calls warrants some level of scrutiny.
- Shell: No shell execution patterns were detected, indicating low risk.
- Obfuscation: No obfuscation patterns detected, indicating low risk.
- Credentials: No credential harvesting patterns detected, indicating low risk.
- Metadata: The package is suspicious due to its recent creation, lack of maintainer history, and missing author details.
Heuristic Checks
Outbound Network Calls
score 3.0
Found 2 network call pattern(s)
import requests resp = requests.get( url, headers={"User-Agent": user_agent, "Accept-Lanconfig self.session = requests.Session() retry = Retry( total=config.retries,
Code Obfuscation
No obfuscation patterns detected
Shell / Subprocess Execution
No shell execution patterns detected
Credential Harvesting
No credential harvesting patterns detected
Typosquatting
No typosquatting candidates detected
Registered Email Domain
Email domain looks legitimate: gmail.com>
Suspicious Page Links
All external links appear legitimate
Git Repository History
score 3.0
Repository not found (deleted or private)
Repository not found (deleted or private)
Maintainer History
score 8.0
4 maintainer concern(s) found
Only one version has ever been released — brand new packagePackage uploaded less than 24 hours ago (2026-06-05T04:07:04.000Z)Author name is missing or very shortAuthor "" appears to have only 1 package on PyPI (new or inactive account)