LoadsKernel

v2026.5 suspicious
6.0
Medium Risk

The Loads Kernel Software allows for the calculation of quasi-steady and dynamic maneuver loads, unsteady gust loads in the time and frequency domain as well as dynamic landing loads based on a generic landing gear module.

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package exhibits high risks related to shell execution and code obfuscation, which could potentially indicate malicious behavior. However, there is no direct evidence of credential harvesting or network-based threats.

  • High risk due to direct execution of shell commands
  • High risk associated with the use of eval with untrusted inputs
Per-check LLM notes
  • Network: No network calls detected, thus minimal risk.
  • Shell: Direct execution of shell commands via os.system can be risky if not properly sanitized, suggesting potential for command injection attacks.
  • Obfuscation: The use of eval with untrusted input is risky and can be indicative of malicious intent.
  • Credentials: No direct evidence of credential harvesting is present, but caution is advised.
  • Metadata: Low risk but requires closer inspection due to new maintainer and lack of detailed metadata.

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation score 4.0

Found 2 obfuscation pattern(s)

  • tmp[fieldname] = eval(row[fieldname]) listofdicts.append(tmp) logg
  • r = fid.read() trimcase = eval(trimcase_str) logging.info('Generated list of {} dicts f
Shell / Subprocess Execution score 10.0

Found 6 shell execution pattern(s)

  • logging.info(cmd) os.system(cmd) # MPEG-4 - besser geeignet fuer PowerPoint
  • logging.info(cmd) os.system(cmd) # GIF als Notloesung. cmd1 = 'f
  • ogging.info(cmd1) os.system(cmd1) logging.info(cmd2) os.system(c
  • ogging.info(cmd2) os.system(cmd2) else: # launch animation
  • ec --help') process = subprocess.Popen(args_version, stdin=subprocess.PIPE, stdout=subprocess.PIPE,
  • ase'])) returncode = subprocess.call(args_deform) if returncode != 0: raise T
Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

Email domain looks legitimate: dlr.de

Suspicious Page Links

All external links appear legitimate

Git Repository History

Repository DLR-AE/LoadsKernel appears legitimate

Maintainer History score 4.0

2 maintainer concern(s) found

  • Author "Arne Voß" appears to have only 1 package on PyPI (new or inactive account)
  • Package has no PyPI classifiers (low effort / metadata quality)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with LoadsKernel 
Create a mini-application named 'AeroLoadSimulator' using the LoadsKernel package to simulate and visualize various types of aircraft loads during different flight maneuvers. The application should allow users to input basic aircraft parameters such as wing area, mass, and aerodynamic coefficients, as well as specific conditions like altitude, speed, and atmospheric conditions. It should then calculate quasi-steady and dynamic maneuver loads, unsteady gust loads in both time and frequency domains, and dynamic landing loads based on a generic landing gear model provided by the LoadsKernel package. Additionally, implement a user-friendly graphical interface where users can select different scenarios (e.g., steady cruise, sudden gust encounter, landing) and visualize the results through plots and graphs. Ensure the app provides detailed explanations of each load type and its significance in aircraft design and safety. Finally, include a feature to export the simulation data and visualizations into a report format (PDF or Excel) for further analysis or documentation.