apache-airflow-providers-mqtt

v0.2.0 safe
4.0
Medium Risk

Provider package apache-airflow-providers-mqtt for Apache Airflow

🤖 AI Analysis

Final verdict: SAFE

The package has low risks across all evaluated categories, including network, shell, obfuscation, and credential risks. However, the metadata risk suggests potential issues with maintenance and community support.

  • Low risk in network, shell, obfuscation, and credential areas.
  • Potential low maintenance and lack of community support indicated by metadata.
Per-check LLM notes
  • Network: No network calls detected, which is normal for most Python packages unless they require external services.
  • Shell: No shell execution patterns detected, indicating the package does not attempt to execute system commands.
  • Obfuscation: No obfuscation patterns detected, indicating low risk.
  • Credentials: No credential harvesting patterns detected, indicating low risk.
  • Metadata: The package shows signs of low maintenance and potential lack of community support.

📦 Package Quality Overall: Low (3.0/10)

○ Low Test Suite 1.0

No test suite detected

  • No test files or test-runner configuration detected
◈ Medium Documentation 5.0

Some documentation present

  • Detailed PyPI description (827 chars)
○ Low Contributing Guide 2.0

No contributing guide or governance files found

  • No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found
◈ Medium Type Annotations 5.0

Partial type annotation coverage

  • 4 type-annotated function signatures (partial)
○ Low Multiple Contributors 2.0

Single-author or unverifiable project

  • 1 unique contributor(s) across 11 commits in gregatm/apache-airflow-providers-mqtt
  • Single author with few commits — possibly a personal or throwaway project

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution

No shell execution patterns detected

Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

Email domain looks legitimate: users.noreply.github.com>

Suspicious Page Links

All external links appear legitimate

Git Repository History score 2.5

Git history flags: Repository has zero stars and zero forks

  • Repository has zero stars and zero forks
Maintainer History score 6.0

3 maintainer concern(s) found

  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)
  • Package has no PyPI classifiers (low effort / metadata quality)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with apache-airflow-providers-mqtt 
Build a simple Python application using the apache-airflow-providers-mqtt package to demonstrate its core features.