Spectra Assure
Community
Docs
failIncident: Malware
Scanned: 4 days ago

aliyun-ai-labs-snippets-sdk

Artifact:
latest
malicious
AI Labs Snippets SDK for Python
License: Permissive (MIT)
Published: 6 months ago
See on PyPI

SAFE Assessment

Compliance

Licenses
No license compliance issues
Secrets
No sensitive information found

Security

Vulnerabilities
No known vulnerabilities detected
Hardening
No application hardening issues

Threats

Tampering
3 malware-like behaviors found
Malware
4 supply chain attack artifacts

INCIDENTS FOR THIS VERSION:

malware
6 months agoReported By: ReversingLabs (Automated)
Learn more about malware detection
malware
6 months agoReported By: ReversingLabs (Researcher)
See more info on our blog
malware
5 months agoReported By: Community (OpenSSF)
More info
List of software behaviors discovered with static code analysis.
Info
Count
Category

Prevalence in PyPI community

Behavior exclusively used by malicious software (Malicious)
Behavior uncommon for this community (Uncommon)
0 packages
found in
Top 100
0 packages
found in
Top 1k
2 packages
found in
Top 10k
5 packages
in community

Prevalence in PyPI community

Behavior commonly used by malicious software (Important)
Behavior uncommon for this community (Uncommon)
0 packages
found in
Top 100
4 packages
found in
Top 1k
11 packages
found in
Top 10k
454 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
39 packages
found in
Top 100
280 packages
found in
Top 1k
1754 packages
found in
Top 10k
67026 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
40 packages
found in
Top 100
253 packages
found in
Top 1k
1433 packages
found in
Top 10k
53416 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
68 packages
found in
Top 100
540 packages
found in
Top 1k
3644 packages
found in
Top 10k
154572 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
54 packages
found in
Top 100
343 packages
found in
Top 1k
1872 packages
found in
Top 10k
49508 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
49 packages
found in
Top 100
364 packages
found in
Top 1k
2374 packages
found in
Top 10k
87567 packages
in community

Prevalence in PyPI community

No behavior prevalence information at this time

Prevalence in PyPI community

Behavior often found in this community (Common)
25 packages
found in
Top 100
193 packages
found in
Top 1k
894 packages
found in
Top 10k
24665 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
22 packages
found in
Top 100
157 packages
found in
Top 1k
996 packages
found in
Top 10k
29388 packages
in community

Did you know...

... that you can use ReversingLabs’ Spectra Assure platform to perform regular risk assessments of packages you develop in-house?

We recommend continuous software safeness monitoring through CI/CD integrations and pre-release/deployment checks. In addition to basic package information found on this page our platform offers rich reports for developers and DevSecOps that help them remediate all reported issues.