AI Analysis
Final verdict: SUSPICIOUS
The package shows no direct signs of malicious activity based on network, shell, or obfuscation risks. However, the high metadata risk due to a lack of maintainer history and immediate release without a GitHub repository raises concerns about its legitimacy and origin.
- High metadata risk
- Immediate release without a GitHub repository
Per-check LLM notes
- Network: No network calls detected, which is unusual but not necessarily indicative of malicious activity for a monitoring tool like CloudWatch; further investigation into functionality is recommended.
- Shell: No shell execution detected, which aligns with the expected behavior for a non-executable Python library.
- Obfuscation: No obfuscation patterns detected, indicating low risk of malicious intent.
- Credentials: No credential harvesting patterns detected, indicating safe handling of secrets and credentials.
- Metadata: High risk due to lack of maintainer history and immediate release without a GitHub repository.
Heuristic Checks
Outbound Network Calls
No suspicious network call patterns found
Code Obfuscation
No obfuscation patterns detected
Shell / Subprocess Execution
No shell execution patterns detected
Credential Harvesting
No credential harvesting patterns detected
Typosquatting
No typosquatting candidates detected
Registered Email Domain
Email domain looks legitimate: proton.me>
Suspicious Page Links
All external links appear legitimate
Git Repository History
No GitHub repository linked
No GitHub repository link found
Maintainer History
score 8.0
4 maintainer concern(s) found
Only one version has ever been released — brand new packagePackage uploaded less than 24 hours ago (2026-06-05T09:01:45.000Z)Author name is missing or very shortAuthor "" appears to have only 1 package on PyPI (new or inactive account)