Package Metadata

Author: Mike Bayer
Email: [email protected]
PyPI: SQLAlchemy
Python: >=3.7
Versions: 323 releases
First release: 14 Feb 2006, 03:11 UTC
Analysed: 05 Jun 2026, 20:24 UTC
Source files: 63 .py files scanned

Project Links

Classifiers

Development Status :: 5 - Production/StableIntended Audience :: DevelopersOperating System :: OS IndependentProgramming Language :: PythonProgramming Language :: Python :: 3Programming Language :: Python :: 3.10Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13Programming Language :: Python :: 3.7

🤖 AI Analysis

Final verdict: SUSPICIOUS

While SQLAlchemy shows low risks in network, shell execution, and credential handling, the observed obfuscation patterns raise concerns about potential hidden functionality or evasion techniques.

Medium to high obfuscation risk
Single package from maintainer

Per-check LLM notes

Network: No network calls detected, which is normal for SQLAlchemy as it typically interacts with databases through defined connections rather than arbitrary network requests.
Shell: No shell execution patterns detected, which aligns with the expected behavior of SQLAlchemy as it focuses on database interaction and ORM capabilities without executing system commands.
Obfuscation: The obfuscation patterns suggest an attempt to dynamically import modules which could be used to hide code or evade detection, indicating a medium to high risk of malicious intent.
Credentials: No clear signs of credential harvesting or secret handling were detected in the provided code snippets.
Metadata: The maintainer has only one package, which might indicate a new or less active account, but no other suspicious activities were detected.

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

⚠ Code Obfuscation score 4.0

Found 2 obfuscation pattern(s)

try: __import__(__name__ + "." + potential_name) except ImportError: pas
cls.name is None: __import__(__name__ + "." + args.name) Profiler(args).run() @classmethod def _su

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: zzzcomputing.com

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository sqlalchemy/sqlalchemy appears legitimate

⚠ Maintainer History score 2.0

1 maintainer concern(s) found

Author "Mike Bayer" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with SQLAlchemy

Create a mini-application called 'Bookshelf' using Python and the SQLAlchemy library. This application will serve as a simple digital book catalog where users can add, edit, delete, and search for books. The app should include the following functionalities:

1. **Add Books**: Users should be able to input details of a new book such as title, author, publication year, and genre.
2. **Edit Books**: Allow users to modify any information about a book they have previously added.
3. **Delete Books**: Provide functionality to remove a book from the database.
4. **Search Books**: Implement a feature where users can search for books based on various criteria like title, author, or genre.
5. **List Books**: Display all the books in the catalog in a readable format.

To achieve these functionalities, you will use SQLAlchemy, which is a SQL toolkit and Object-Relational Mapping (ORM) system for Python. It provides a full suite of well known enterprise-level persistence patterns. Your task is to define the necessary models (tables) in SQLAlchemy, establish a connection to a SQLite database, and implement the CRUD operations (Create, Read, Update, Delete) using SQLAlchemy's ORM capabilities.

Additionally, consider adding a command-line interface (CLI) using Python’s built-in `argparse` module to interact with the application. Each command should be intuitive and easy to use, reflecting common database operations.

The goal of this project is not only to create a functional application but also to explore how SQLAlchemy simplifies database interactions and helps in managing complex data relationships.