Package Metadata

Author: —
Email: Andrey Gubarev <[email protected]>
PyPI: arnmatch
Python: >=3.10
Versions: 20 releases
First release: 27 Jan 2026, 22:58 UTC
Analysed: 07 Jun 2026, 12:21 UTC
Source files: 2 .py files scanned

Project Links

Changelog Homepage Issues PyPI Repository

Classifiers

Development Status :: 4 - BetaEnvironment :: ConsoleIntended Audience :: DevelopersIntended Audience :: Information TechnologyIntended Audience :: System AdministratorsLicense :: OSI Approved :: Apache Software LicenseOperating System :: OS IndependentProgramming Language :: Python :: 3Programming Language :: Python :: 3 :: OnlyProgramming Language :: Python :: 3.10

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package exhibits low individual risks but has some metadata red flags, including an author with no details and a low activity repository, which raises concerns about its legitimacy.

Author has no details provided
Repository shows low activity

Per-check LLM notes

Network: No network calls suggest normal behavior for a package focused on local string matching.
Shell: No shell execution attempts indicate the package is not designed to execute arbitrary commands.
Obfuscation: No obfuscation patterns detected, indicating low risk.
Credentials: No credential harvesting patterns detected, indicating low risk.
Metadata: The package shows some red flags such as an author with no details and a low activity repository, but there's no direct evidence of malicious intent.

📦 Package Quality Overall: Low (4.4/10)

◈ Medium Test Suite 6.0

Partial test coverage signals detected

Test runner config found: pyproject.toml

◈ Medium Documentation 5.0

Some documentation present

Detailed PyPI description (9021 chars)

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

○ Low Type Annotations 1.0

No type annotations detected

No type annotations, py.typed marker, or stub files detected

◈ Medium Multiple Contributors 6.0

Limited contributor diversity

2 unique contributor(s) across 100 commits in andreygubarev/arnmatch
Two distinct contributors found

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

✓ Code Obfuscation

No obfuscation patterns detected

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: andreygubarev.com>

✓ Suspicious Page Links

All external links appear legitimate

⚠ Git Repository History score 2.5

Git history flags: Repository has zero stars and zero forks

Repository has zero stars and zero forks

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with arnmatch

Create a Python-based command-line utility called 'ARN Inspector' that leverages the 'arnmatch' package to parse and analyze AWS ARNs. This tool will help users understand the structure of ARNs, validate them against AWS standards, and extract useful information such as service, region, account ID, resource type, and specific resource identifiers. The utility should include the following features:

1. **ARN Parsing**: Automatically parse an input ARN string and display its components.
2. **Validation**: Check if the provided ARN is valid according to AWS conventions.
3. **Resource Information Extraction**: For valid ARNs, extract and display detailed information about the associated AWS resource types and their attributes.
4. **CloudFormation Compatibility Check**: Verify if the parsed ARN can be used directly within AWS CloudFormation templates.
5. **Tagging API Compliance**: Validate if the ARN adheres to the tagging requirements specified by the AWS Tagging API.
6. **Interactive Mode**: Allow users to input multiple ARNs and receive detailed reports on each one.
7. **Help Documentation**: Provide comprehensive documentation and examples for common use cases.

The 'arnmatch' package will be central to this utility, providing the necessary mappings and parsing logic for over 2100 AWS resource types. Users will benefit from this tool by gaining a deeper understanding of ARNs and ensuring they comply with AWS best practices.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Low (4.4/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue