apache-airflow-providers-sktvane

v1.2.12 safe
4.0
Medium Risk

Provider for Apache Airflow. Implements apache-airflow-providers-sktvane package by skt

🤖 AI Analysis

Final verdict: SAFE

The package shows minimal risk indicators with no evidence of malicious activities or supply-chain attacks.

  • Low network, shell, obfuscation, and credential risks.
  • Metadata risk is slightly elevated due to the maintainer's limited presence.
Per-check LLM notes
  • Network: The observed network calls seem to be part of normal API interaction with an endpoint, likely for operational purposes.
  • Shell: No shell execution patterns were detected.
  • Obfuscation: No obfuscation patterns detected, indicating low risk.
  • Credentials: No credential harvesting patterns detected, indicating low risk.
  • Metadata: The maintainer has only one package and no GitHub repository, which may indicate a less established project.

📦 Package Quality Overall: Low (3.8/10)

◈ Medium Test Suite 6.0

Partial test coverage signals detected

  • 2 test file(s) detected (e.g. operator_nes_test.py)
◈ Medium Documentation 5.0

Some documentation present

  • Detailed PyPI description (3669 chars)
○ Low Contributing Guide 2.0

No contributing guide or governance files found

  • No CONTRIBUTING, CODE_OF_CONDUCT, or governance files found
◈ Medium Type Annotations 5.0

Partial type annotation coverage

  • 19 type-annotated function signatures detected in source
○ Low Multiple Contributors 1.0

Unable to verify contributor count: no GitHub repository found

  • No GitHub repository linked — contributor count unavailable

🔬 Heuristic Checks

Outbound Network Calls score 4.5

Found 3 network call pattern(s)

  • _token response = requests.post( url=self.nes, json=request_
  • > str: response = requests.get( url=f"{self.nes}/{self.run_id}",
  • True: response = requests.delete(f"{self.nes}/{self.run_id}") status = response.j
Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution

No shell execution patterns detected

Credential Harvesting

No credential harvesting patterns detected

Typosquatting

No typosquatting candidates detected

Registered Email Domain

Email domain looks legitimate: sktai.io

Suspicious Page Links

All external links appear legitimate

Git Repository History

No GitHub repository linked

  • No GitHub repository link found
Maintainer History score 2.0

1 maintainer concern(s) found

  • Author "aidp" appears to have only 1 package on PyPI (new or inactive account)
Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with apache-airflow-providers-sktvane 
Build a simple Python application using the apache-airflow-providers-sktvane package to demonstrate its core features.

💬 Discussion Feed

Leave a comment

No discussion yet. Be the first to share your thoughts!