Package Metadata

Author: —
Email: Lewis Russell <[email protected]>
PyPI: tcl-ls
Python: >=3.14
Versions: 1 release
First release: 05 Jun 2026, 09:20 UTC
Analysed: 05 Jun 2026, 09:24 UTC
Source files: 61 .py files scanned

Project Links

Changelog Documentation Homepage Issues Repository

Classifiers

Development Status :: 3 - AlphaEnvironment :: ConsoleIntended Audience :: DevelopersLicense :: OSI Approved :: MIT LicenseNatural Language :: EnglishOperating System :: OS IndependentProgramming Language :: Python :: 3Programming Language :: Python :: 3 :: OnlyProgramming Language :: Python :: 3.14Topic :: Software Development

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package exhibits significant risks related to network and shell execution, which could potentially be exploited for malicious purposes. However, there's no evidence of actual malicious activity.

High network risk
High shell execution risk
Low obfuscation and credential risk

Per-check LLM notes

Network: Unusual network calls without clear purpose may indicate potential data exfiltration or C2 activities.
Shell: Execution of shell commands can be risky and might be used to execute arbitrary code, suggesting possible malicious intent.
Obfuscation: No obfuscation patterns detected, indicating low risk.
Credentials: No credential harvesting patterns detected, indicating low risk.
Metadata: The package is suspicious due to its newness, lack of maintainer information, and minimal repository engagement.

🔬 Heuristic Checks

⚠ Outbound Network Calls score 3.0

Found 2 network call pattern(s)

mmand}.htm' request = urllib.request.Request(url, headers=_REQUEST_HEADERS) try:
try: with urllib.request.urlopen(request, timeout=30) as response: re

✓ Code Obfuscation

No obfuscation patterns detected

⚠ Shell / Subprocess Execution score 8.0

Found 4 shell execution pattern(s)

letedProcess[str]: return subprocess.run( list(command), check=check, capture
_SmokeSession: process = subprocess.Popen( [str(server_path)], stdin=subprocess.PIPE,
is not None: result = subprocess.run( ['git', 'log', '-1', '--format=%B', args.rev],
try: completed = subprocess.run( [tclsh_path], input=_REGEXP_VALIDAT

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: gmail.com>

✓ Suspicious Page Links

All external links appear legitimate

⚠ Git Repository History score 2.5

Git history flags: Repository has zero stars and zero forks

Repository has zero stars and zero forks

⚠ Maintainer History score 8.0

4 maintainer concern(s) found

Only one version has ever been released — brand new package
Package uploaded less than 24 hours ago (2026-06-05T09:20:42.000Z)
Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)