Package Metadata

Author: ArmorIQ Team
Email: ArmorIQ Team <[email protected]>
PyPI: armoriq-sdk
Python: >=3.9
Versions: 16 releases
First release: 16 Jan 2026, 10:36 UTC
Analysed: 07 Jun 2026, 12:18 UTC
Source files: 30 .py files scanned

Project Links

Classifiers

Development Status :: 4 - BetaIntended Audience :: DevelopersLicense :: OSI Approved :: MIT LicenseProgramming Language :: Python :: 3Programming Language :: Python :: 3.10Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13Topic :: SecurityTopic :: Software Development :: Libraries :: Python Modules

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package shows some unusual behaviors such as dynamic imports and network calls to external APIs, which warrant further investigation.

Unusual use of __import__ for importing 'datetime'
Expected network calls to external APIs with potential risks associated with URL and API key legitimacy

Per-check LLM notes

Network: Network calls to an external API are expected for a service SDK, but the URLs and API keys should be reviewed for legitimacy.
Shell: No shell execution patterns detected.
Obfuscation: The use of __import__ to dynamically import 'datetime' is unusual but not necessarily malicious; it could be for evasion or code obfuscation purposes.
Credentials: No credentials or secrets harvesting patterns detected.
Metadata: The author has only one package, which may indicate a new or less active maintainer, but no other red flags are present.

📦 Package Quality Overall: Medium (5.4/10)

○ Low Test Suite 1.0

No test suite detected

No test files or test-runner configuration detected

◈ Medium Documentation 7.0

Some documentation present

Documentation URL: "Documentation" -> https://docs.armoriq.ai
Detailed PyPI description (2019 chars)

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

◈ Medium Type Annotations 5.0

Partial type annotation coverage

113 type-annotated function signatures detected in source

✦ High Multiple Contributors 10.0

Active multi-contributor project

8 unique contributor(s) across 67 commits in armoriq/armoriq-sdk-python
Active community — 5 or more distinct contributors

🔬 Heuristic Checks

⚠ Outbound Network Calls score 9.0

Found 6 network call pattern(s)

= None try: with httpx.Client(timeout=timeout, follow_redirects=True) as client:
RMORIQ_BACKEND_URL") with httpx.Client(timeout=timeout, follow_redirects=True) as client: i
f"Bearer {api_key}"} with httpx.Client(timeout=12.0, follow_redirects=True) as client: resp
k/orgs" try: with httpx.Client(timeout=12.0, follow_redirects=True) as client:
y_name try: with httpx.Client(timeout=12.0, follow_redirects=True) as client:
{path}" try: with httpx.Client(timeout=12.0, follow_redirects=True) as client:

⚠ Code Obfuscation score 2.0

Found 1 obfuscation pattern(s)

"executed_at": __import__("datetime").datetime.utcnow().isoformat() + "Z", },

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: armoriq.io>

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository armoriq/armoriq-sdk-python appears legitimate

⚠ Maintainer History score 2.0

1 maintainer concern(s) found

Author "ArmorIQ Team" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with armoriq-sdk

Create a Python-based mini-application that allows users to securely interact with AI agents using the 'armoriq-sdk' package. Your application should enable users to generate, verify, and manage cryptographic keys for AI agents, ensuring that these agents operate within predefined security parameters. Here are the key steps and features your application should include:

1. **Setup and Configuration**: Integrate the 'armoriq-sdk' into your Python environment. Ensure your application can handle different configurations based on user input, such as specifying the type of cryptographic algorithm to use.
2. **Key Generation**: Implement functionality that allows users to create new cryptographic keys for their AI agents. These keys should be stored securely and be accessible only through the application.
3. **Agent Verification**: Utilize the 'armoriq-sdk' to verify the integrity and authenticity of AI agents before they perform any operations. This ensures that the AI agents adhere to the intended security protocols and policies.
4. **Security Policies Management**: Allow users to define and manage security policies for their AI agents. Users should be able to specify conditions under which certain actions are allowed or denied.
5. **Logging and Monitoring**: Implement logging to track all interactions and verifications performed by the AI agents. This will help in auditing and monitoring the behavior of the agents over time.
6. **User Interface**: Develop a simple command-line interface (CLI) for users to interact with the application. Commands should include options for key generation, agent verification, policy management, and viewing logs.
7. **Documentation**: Provide comprehensive documentation for both developers and end-users. Include examples and best practices for integrating the 'armoriq-sdk' into other applications.

Your goal is to demonstrate the capabilities of 'armoriq-sdk' in building secure AI systems while providing a practical and easy-to-use tool for developers and users alike.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Medium (5.4/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue