brin
brin

wisent

PyPI

Is wisent safe to use?

The latest brin safety scan flagged wisent v0.7.1440 with risk indicators that warrant review. No known CVE vulnerabilities and 1 detected threat pattern, including patterns consistent with hardcoded secrets. Trust score: 75/100. Review the findings below before use. This is an automated assessment and may contain errors.

Install (safety-checked)

wisent Has Confirmed Threats

Confirmed threat patterns detected in this package

critical
CVEs

0

Threats

1

Install Scripts

0

wisent Confirmed Threats (1)

Hardcoded Secrets
confidence: 95%confirmed

Location: wisent/core/geometry/data/nonsense/nonsense_cache.py:14-15

"user": os.environ.get("DB_USER", "postgres.rbqjqnouluslojmmnuqi"), "password": os.environ.get("DB_PASSWORD", "BsKuEnPFLCFurN4a")

brin Recommendations

  • This package is assessed as high-risk. Manual review is strongly recommended before use.
  • 1 verified threat pattern detected. Review the specific findings and consider alternatives.

This is an automated, point-in-time assessment and may contain errors. Findings are risk indicators, not confirmed threats. Security posture may change over time. Maintainers can dispute findings via the brin review process.

wisent Capabilities & Permissions

What wisent can access when installed. Review these capabilities before using with AI agents like Cursor, Claude Code, or Codex.

Network Access

This package makes network requests.

api-inference.huggingface.coapi.github.comapi.gptzero.mearxiv.orgexample.com!github.comgptzero.mehuggingface.coraw.githubusercontent.comscicode-bench.github.io
Protocols: https

Filesystem Access

Reads and writes to the filesystem.

.env (r)/home/ (rw)/home/ (rw)/home/ (rw)/usr/ (rw).env (rw)/tmp/ (rw)/usr/ (rw)+60 more

Process Spawning

This package can spawn child processes.

Environment Variables

Accesses the following environment variables.

DATABASE_URLDB_HOSTDB_NAMEDB_PASSWORDDB_PORTDB_USERGPTZERO_API_KEYHF_ALLOW_CODE_EVALHF_DATASETS_TRUST_REMOTE_CODE+11 more

Native Modules

Contains native code that runs outside the JavaScript sandbox.

numpypandaspsycopg2scipy

AGENTS.md for wisent

Good instructions lead to good results. brin adds wisent documentation to your AGENTS.md so your agent knows how to use it properly—improving both safety and performance.

brin init

Vercel's research: 100% accuracy with AGENTS.md vs 53% without →

wisent Documentation & Source Code

For the full wisent README, API documentation, and source code, visit the official package registry.

View on PyPIView SourceHomepage

Frequently asked questions about wisent safety

Weekly Downloads

11.0K

Version

0.7.1440

License

MIT

Last Scanned

2 days ago

Trust Score

75/100·Legitimacy signals, not safety

Confirmed Threats (1)

hardcoded secretsconfirmed

Location: wisent/core/geometry/data/nonsense/nonsense_cache.py:14-15

Confidence: 95%

"user": os.environ.get("DB_USER", "postgres.rbqjqnouluslojmmnuqi"), "password": os.environ.get("DB_PASSWORD", "BsKuEnPFLCFurN4a")

Confirmed threats have been validated by human review and represent real risks.

Capabilities

Network

Connects to: api-inference.huggingface.co, api.github.com, api.gptzero.me...

Filesystem

Reads & Writes files

Process

Spawns child processes

Environment

Accesses: , DATABASE_URL, DB_HOST...

Native

Contains native modules

Is wisent Safe? | PyPI Safety Scan - brin