Is nonebot-plugin-shiro-personification safe to install?

nonebot-plugin-shiro-personification was flagged as CRITICAL RISK (risk score 111) with 17 findings detected across 86 files. Review the findings before installing.

What security issues were found in nonebot-plugin-shiro-personification?

Sigil detected 17 findings in nonebot-plugin-shiro-personification, including patterns related to obfuscation, network_exfil. See the full scan report for details.

Scans/pypi/nonebot-plugin-shiro-personification

nonebot-plugin-shiro-personification

pypi

Summary

nonebot-plugin-shiro-personification v0.4.0 was classified as CRITICAL RISK with a risk score of 111. Sigil detected 17 findings across 86 files, covering phases including obfuscation, network exfiltration. Review the findings below before installing this package.

Package description: 基于群聊与私聊上下文的人设回复插件，支持 Agent 工具调用、风格学习、主动消息与贴图能力。

CRITICAL RISK(111)

v0.4.0

23 March 2026, 09:19 UTC

by Sigil Bot

Risk Score

111

Findings

Files Scanned

Provenance

Registry

https://pypi.org/project/nonebot-plugin-shiro-personification/0.4.0/

Findings by Phase

•

Phase Ordering

Phases are ordered by criticality, with the most dangerous at the top. Click any phase header to expand or collapse its findings. Critical phases are expanded by default.

Badge

Markdown

[![Sigil Scan](https://sigilsec.ai/badge/pypi/nonebot-plugin-shiro-personification)](https://sigilsec.ai/scans/2D7834EC-310B-4031-BAB3-4DEA66DE43D2)

HTML

<a href="https://sigilsec.ai/scans/2D7834EC-310B-4031-BAB3-4DEA66DE43D2"><img src="https://sigilsec.ai/badge/pypi/nonebot-plugin-shiro-personification" alt="Sigil Scan"></a>

Run This Scan Yourself