Package Metadata

Author: Amazon Web Services<[email protected]>
Email: —
PyPI: aws-cdk.asset-awscli-v1
Python: ~=3.10
Versions: 326 releases
First release: 13 Sept 2022, 20:51 UTC
Analysed: 08 Jun 2026, 04:03 UTC
Source files: 4 .py files scanned

Project Links

Classifiers

Development Status :: 5 - Production/StableIntended Audience :: DevelopersLicense :: OSI ApprovedOperating System :: OS IndependentProgramming Language :: JavaScriptProgramming Language :: Python :: 3 :: OnlyProgramming Language :: Python :: 3.10Programming Language :: Python :: 3.11Programming Language :: Python :: 3.9Typing :: Typed

🤖 AI Analysis

Final verdict: SAFE

The package shows minimal risk across all categories, with no signs of malicious activity or obfuscation. The metadata risk is slightly elevated due to the author having only one package, but this alone does not indicate a supply-chain attack.

Low network and shell execution risks
No evidence of obfuscation or credential harvesting
Metadata risk due to single-package author

Per-check LLM notes

Network: No network calls detected, which is expected for a package that likely provides AWS CLI assets.
Shell: No shell execution patterns detected, aligning with the expected behavior of an asset package.
Obfuscation: No obfuscation patterns detected, indicating low risk.
Credentials: No credential harvesting patterns detected, indicating low risk.
Metadata: The author has only one package, which may indicate a new or less active account, but no other suspicious indicators were found.

📦 Package Quality Overall: Low (4.2/10)

○ Low Test Suite 1.0

No test suite detected

No test files or test-runner configuration detected

○ Low Documentation 1.0

No documentation detected

No documentation URL, doc files, or meaningful description found

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

◈ Medium Type Annotations 5.0

Partial type annotation coverage

Classifier: Typing :: Typed

✦ High Multiple Contributors 10.0

Active multi-contributor project

5 unique contributor(s) across 100 commits in cdklabs/awscdk-asset-awscli
Active community — 5 or more distinct contributors

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

✓ Code Obfuscation

No obfuscation patterns detected

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

No author email provided

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository cdklabs/awscdk-asset-awscli appears legitimate

⚠ Maintainer History score 2.0

1 maintainer concern(s) found

Author "Amazon Web Services<[email protected]>" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with aws-cdk.asset-awscli-v1

Build a simple Python application using the aws-cdk.asset-awscli-v1 package to demonstrate its core features.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Low (4.2/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue