Package Metadata

Author: Alibaba Cloud SDK
Email: [email protected]
PyPI: alibabacloud-qualitycheck20190115
Python: >=3.7
Versions: 31 releases
First release: 10 Jan 2021, 07:58 UTC
Analysed: 06 Jun 2026, 23:04 UTC
Source files: 9 .py files scanned

Project Links

Classifiers

Development Status :: 4 - BetaIntended Audience :: DevelopersLicense :: OSI Approved :: Apache Software LicenseProgramming Language :: PythonProgramming Language :: Python :: 3Programming Language :: Python :: 3.10Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.7Programming Language :: Python :: 3.8

🤖 AI Analysis

Final verdict: SAFE

The package appears to be legitimate with low risk indicators. It does not engage in network calls, shell executions, or credential harvesting.

No network calls detected.
No shell execution detected.
Unconventional import/access pattern observed, but not indicative of malicious activity.

Per-check LLM notes

Network: No network calls detected, which is normal if the package does not require internet access.
Shell: No shell execution detected, indicating no direct system command execution.
Obfuscation: The observed pattern is likely an unconventional method for importing and accessing the version of a package, but does not strongly indicate malicious intent.
Credentials: No patterns indicative of credential harvesting were detected.
Metadata: The author has only one package, which might indicate a new or less active account. However, there are no other suspicious flags.

📦 Package Quality Overall: Low (4.4/10)

○ Low Test Suite 1.0

No test suite detected

No test files or test-runner configuration detected

◈ Medium Documentation 5.0

Some documentation present

Detailed PyPI description (1207 chars)

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

◈ Medium Type Annotations 7.0

Partial type annotation coverage

Type checker (mypy / pyright / pytype) referenced in project
16 type-annotated function signatures detected in source

◈ Medium Multiple Contributors 5.0

Limited contributor diversity

1 unique contributor(s) across 100 commits in aliyun/alibabacloud-python-sdk
Single author but highly active (100 commits)

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

⚠ Code Obfuscation score 2.0

Found 1 obfuscation pattern(s)

bacloud-python-sdk" VERSION = __import__(PACKAGE).__version__ REQUIRES = [ "darabonba-core>=1.0.0, <2.0.0

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: alibabacloud.com

⚠ Suspicious Page Links score 2.0

Found 1 suspicious link(s) on the package page

Non-HTTPS external link: http://www.apache.org/licenses/LICENSE-2.0

✓ Git Repository History

Repository aliyun/alibabacloud-python-sdk appears legitimate

⚠ Maintainer History score 2.0

1 maintainer concern(s) found

Author "Alibaba Cloud SDK" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with alibabacloud-qualitycheck20190115

Build a simple Python application using the alibabacloud-qualitycheck20190115 package to demonstrate its core features.