claude-purr

v0.1.1 suspicious
4.0
Medium Risk

Local dictation backend for Claude Code (macOS, Apple Silicon) — on-device Whisper, "Hey Claude" wake word, @-file tagging, voice daemon.

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package shows signs of low effort and potential misuse, with a notable risk in metadata and shell execution. However, it does not engage in network calls or credential harvesting.

  • Low effort in package creation
  • Potential misuse indicated by metadata
  • Shell execution for clipboard operations
Per-check LLM notes
  • Network: No network calls were detected.
  • Shell: Shell execution is present and may indicate interaction with system commands for clipboard operations, which could be risky if not properly documented or intended.
  • Obfuscation: No obfuscation patterns detected, indicating low risk of malicious intent.
  • Credentials: No credential harvesting patterns detected, suggesting no immediate threat to secrets or credentials.
  • Metadata: The package shows signs of low effort and may be newly created for potential malicious purposes.

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution score 10.0

Found 6 shell execution pattern(s)

  • anguage] self._proc = subprocess.Popen(cmd, stdout=logf, stderr=logf) print(f"⏳ Starte Whis
  • str: try: return subprocess.run(["pbpaste"], capture_output=True).stdout.decode(
  • try: old = subprocess.run(["pbpaste"], capture_output=True).stdout except Exce
  • : old = None subprocess.run("pbcopy", input=text.encode("utf-8"), check=True) time.s
  • llen try: subprocess.run("pbcopy", input=old, check=False) except Exception:
  • t).""" try: out = subprocess.run( cmd, capture_output=True, text=True, timeout=ti
Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

No author email provided

Suspicious Page Links

All external links appear legitimate

Git Repository History score 3.0

Repository not found (deleted or private)

  • Repository not found (deleted or private)
Maintainer History score 8.0

4 maintainer concern(s) found

  • Only one version has ever been released — brand new package
  • Package uploaded less than 24 hours ago (2026-06-04T22:25:12.000Z)
  • Author "DKS-Analytics GmbH" appears to have only 1 package on PyPI (new or inactive account)
  • Package has no PyPI classifiers (low effort / metadata quality)