Package Metadata

Author: —
Email: Alexy Grabov <[email protected]>, Yafit Tupman <[email protected]>
PyPI: aws-resource-validator-bcm-recommended-actions
Python: >=3.11
Versions: 3 releases
First release: 28 Apr 2026, 20:56 UTC
Analysed: 08 Jun 2026, 05:53 UTC
Source files: 1 .py file scanned

Project Links

Classifiers

Development Status :: 5 - Production/StableIntended Audience :: DevelopersLicense :: OSI Approved :: Apache Software LicenseProgramming Language :: Python :: 3Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13Topic :: Software Development :: Libraries :: Python Modules

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package shows low individual risks across various categories, but the metadata risk due to the maintainer's new or inactive account and lack of proper author information raises concerns about potential supply-chain attacks.

Metadata risk due to new/inactive maintainer account
Lack of proper author name

Per-check LLM notes

Network: No network calls detected, which is normal if the package does not require external API interactions.
Shell: No shell execution patterns detected, indicating no direct system command execution within the package.
Obfuscation: No obfuscation patterns detected, indicating low risk of malicious activity related to code obfuscation.
Credentials: No credential harvesting patterns detected, suggesting the package does not pose a risk for stealing sensitive information.
Metadata: The maintainer has a new or inactive account and lacks a proper author name, raising some suspicion but not conclusive evidence of malice.

📦 Package Quality Overall: Low (3.8/10)

○ Low Test Suite 1.0

No test suite detected

No test files or test-runner configuration detected

◈ Medium Documentation 5.0

Some documentation present

Brief PyPI description (348 chars)

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

○ Low Type Annotations 1.0

No type annotations detected

No type annotations, py.typed marker, or stub files detected

✦ High Multiple Contributors 8.0

Active multi-contributor project

4 unique contributor(s) across 75 commits in CoreOxide/aws_resource_validator
Small but multi-author team (3–4 contributors)

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

✓ Code Obfuscation

No obfuscation patterns detected

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: gmail.com>

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository CoreOxide/aws_resource_validator appears legitimate

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with aws-resource-validator-bcm-recommended-actions

Create a Python-based command-line utility named 'AWS BCM Health Checker' which leverages the 'aws-resource-validator-bcm-recommended-actions' package to validate AWS resources against best practices and provide actionable recommendations. This tool will serve as a quick diagnostic for developers and DevOps engineers to ensure their AWS environments are optimized according to industry standards.

### Project Scope:
- **User Input:** The tool should accept user input specifying the AWS region and resource type(s) they want to check.
- **Validation Logic:** Use the 'aws-resource-validator-bcm-recommended-actions' package to validate the specified AWS resources against a set of predefined best practices.
- **Actionable Recommendations:** Provide clear, actionable recommendations for any identified issues or areas for improvement.
- **Output Format:** Display results in a human-readable format, including a summary of findings and specific recommendations for each issue.
- **Integration:** Integrate with AWS CLI for easy authentication and resource retrieval.

### Suggested Features:
- **Resource Filtering:** Allow users to filter resources based on tags, names, or other attributes.
- **Detailed Reports:** Generate detailed reports that can be saved as text files or uploaded directly to AWS S3.
- **Automated Checks:** Implement automated checks that run periodically and notify users via email or Slack about any changes in resource health.
- **Custom Rules:** Enable users to define custom validation rules and best practices.
- **Multi-Account Support:** Support checking resources across multiple AWS accounts.

### Utilizing 'aws-resource-validator-bcm-recommended-actions':
- **Model Definitions:** Use the Pydantic models provided by the package to define the structure of your validation logic.
- **Validation Functions:** Implement functions that utilize these models to perform validations against the AWS resources.
- **Recommendation Generation:** Leverage the recommended actions provided by the package to generate detailed, actionable recommendations for improving resource configurations.
- **Error Handling:** Ensure robust error handling to gracefully manage cases where resources may not conform to expected formats or where validation fails.

This project aims to create a versatile, user-friendly tool that helps maintain high standards of security, efficiency, and compliance within AWS environments.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Low (3.8/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue