Package Metadata

Author: Action Marshall contributors
Email: —
PyPI: action-marshall
Python: >=3.9
Versions: 1 release
First release: 26 May 2026, 04:28 UTC
Analysed: 06 Jun 2026, 02:07 UTC
Source files: 13 .py files scanned

Project Links

Documentation Homepage Issues Repository

Classifiers

Development Status :: 3 - AlphaIntended Audience :: DevelopersIntended Audience :: System AdministratorsLicense :: OSI Approved :: MIT LicenseOperating System :: OS IndependentProgramming Language :: Python :: 3Programming Language :: Python :: 3 :: OnlyProgramming Language :: Python :: 3.10Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package shows signs of legitimate functionality but raises concerns due to the unverified maintainer and missing repository. These factors increase the risk of potential supply-chain issues.

Unverified maintainer with limited history
Missing GitHub repository

Per-check LLM notes

Network: The detection of network call patterns suggests the package is likely interacting with an API, which is common but should be reviewed to ensure legitimacy and security.
Shell: No shell execution patterns detected, indicating low risk of direct system command execution from this package.
Obfuscation: No obfuscation patterns detected, indicating low risk of malicious obfuscation.
Credentials: No credential harvesting patterns detected, suggesting no risk of secret theft.
Metadata: The repository is not found and the maintainer seems new with limited history, raising suspicion but not conclusive evidence of malice.

🔬 Heuristic Checks

⚠ Outbound Network Calls score 1.5

Found 1 network call pattern(s)

meout self._session = requests.Session() if api_key: self._session.headers["X-A

✓ Code Obfuscation

No obfuscation patterns detected

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

No author email provided

✓ Suspicious Page Links

All external links appear legitimate

⚠ Git Repository History score 3.0

Repository not found (deleted or private)

Repository not found (deleted or private)

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Only one version has ever been released — brand new package
Author "Action Marshall contributors" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with action-marshall

Create a mini-application named 'AIActionControl' using Python and the 'action-marshall' package. This application will serve as a bridge between developers and AI agents, allowing them to manage and control AI actions at various stages of deployment. The goal is to ensure that AI actions go through a series of checks and approvals before being executed in a live environment. Here’s a step-by-step guide on how to build this application:

1. **Setup Environment**: Start by setting up your development environment. Install Python and the 'action-marshall' package. Make sure you have a virtual environment set up for this project.
2. **Define Core Functionality**: Implement the core functionalities of 'AIActionControl'. This includes defining methods for previewing, approving, canary testing, halting, and auditing AI actions. Each method should interact with the 'action-marshall' package to perform its specific task.
3. **User Interface**: Develop a simple command-line interface (CLI) for users to interact with the application. Users should be able to input commands to trigger different stages of the AI action lifecycle.
4. **Integration Testing**: Integrate the application with a mock AI agent to simulate real-world scenarios. Test each functionality to ensure it works as expected.
5. **Documentation and Deployment**: Write documentation explaining how to use the application and deploy it in a real-world scenario. Provide instructions for installing and configuring 'action-marshall'.

**Suggested Features**:
- **Audit Logs**: Maintain a log of all actions taken, including previews, approvals, and audits. This log should be accessible via the CLI.
- **Customizable Approval Workflow**: Allow users to define their own approval workflows based on their organization's policies.
- **Real-time Monitoring**: Add real-time monitoring capabilities to track the status of canary tests and other ongoing actions.
- **Security Measures**: Implement security measures to prevent unauthorized access to critical actions like halting or approving deployments.

In this project, the 'action-marshall' package will be utilized extensively to handle the core functionalities of the application. It will be responsible for managing the state of AI actions, ensuring that they follow the defined workflow before reaching the production stage.