Package Metadata

Author: —
Email: Alexy Grabov <[email protected]>, Yafit Tupman <[email protected]>
PyPI: aws-resource-validator-inspector
Python: >=3.11
Versions: 3 releases
First release: 29 Apr 2026, 08:53 UTC
Analysed: 08 Jun 2026, 08:15 UTC
Source files: 1 .py file scanned

Project Links

Classifiers

Development Status :: 5 - Production/StableIntended Audience :: DevelopersLicense :: OSI Approved :: Apache Software LicenseProgramming Language :: Python :: 3Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13Topic :: Software Development :: Libraries :: Python Modules

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package shows minimal risk in terms of network, shell, and obfuscation activities. However, the metadata risk score is elevated due to an incomplete maintainer profile and potential inactivity, which raises concerns about the package's origin and maintenance.

Incomplete maintainer profile
Potential inactivity of the maintainer

Per-check LLM notes

Network: No network calls detected, which is normal for packages that do not require external API interactions.
Shell: No shell execution patterns detected, indicating the package does not execute system commands.
Obfuscation: No obfuscation patterns detected, indicating low risk of malicious intent.
Credentials: No credential harvesting patterns detected, indicating safe handling of sensitive information.
Metadata: The maintainer has an incomplete profile and seems to be new or inactive, raising some suspicion but not conclusive evidence of malice.

📦 Package Quality Overall: Low (3.8/10)

○ Low Test Suite 1.0

No test suite detected

No test files or test-runner configuration detected

◈ Medium Documentation 5.0

Some documentation present

Brief PyPI description (306 chars)

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

○ Low Type Annotations 1.0

No type annotations detected

No type annotations, py.typed marker, or stub files detected

✦ High Multiple Contributors 8.0

Active multi-contributor project

4 unique contributor(s) across 75 commits in CoreOxide/aws_resource_validator
Small but multi-author team (3–4 contributors)

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

✓ Code Obfuscation

No obfuscation patterns detected

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: gmail.com>

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository CoreOxide/aws_resource_validator appears legitimate

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with aws-resource-validator-inspector

Create a Python-based utility named 'InspectorAuditTool' that leverages the 'aws-resource-validator-inspector' package to validate and audit AWS resources against specific security standards. This tool will serve as a compliance checker for DevOps teams, ensuring that their AWS environments adhere to best practices and regulatory requirements. Here are the key functionalities and steps for developing this utility:

1. **Resource Validation**: Implement a feature that takes a list of AWS resources (e.g., EC2 instances, RDS databases) as input and validates each resource against predefined security criteria using the 'aws-resource-validator-inspector' package. These criteria could include but are not limited to encryption settings, access control policies, and network configurations.

2. **Compliance Reporting**: After validation, generate a comprehensive report detailing the compliance status of each resource. The report should include recommendations for remediation where applicable.

3. **Customizable Criteria**: Allow users to define their own security criteria through a configuration file or command-line arguments, enabling the tool to adapt to different organizational needs and compliance frameworks.

4. **Integration with AWS Inspector**: Utilize the 'aws-resource-validator-inspector' package to integrate directly with AWS Inspector services, fetching the latest security findings and integrating them into the validation process.

5. **User Interface**: Develop a simple command-line interface (CLI) for interacting with the tool. Users should be able to specify resources, select compliance profiles, and view results.

6. **Documentation and Help**: Provide thorough documentation on how to use the tool, including examples of configuration files and typical use cases. Include a help menu within the CLI that guides users through common commands and options.

7. **Testing and Validation**: Ensure that the tool is thoroughly tested using unit tests and integration tests. Validate the functionality using a set of predefined test scenarios that simulate various AWS resource configurations and compliance levels.

The 'aws-resource-validator-inspector' package will play a crucial role in this project by providing the necessary Pydantic v2 models for validating AWS resources according to defined security standards. Your task is to design and implement this utility, focusing on usability, flexibility, and robustness.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Low (3.8/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue