Package Metadata

Author: —
Email: Alexy Grabov <[email protected]>, Yafit Tupman <[email protected]>
PyPI: aws-resource-validator-inspector-scan
Python: >=3.11
Versions: 3 releases
First release: 29 Apr 2026, 08:53 UTC
Analysed: 08 Jun 2026, 08:16 UTC
Source files: 1 .py file scanned

Project Links

Classifiers

Development Status :: 5 - Production/StableIntended Audience :: DevelopersLicense :: OSI Approved :: Apache Software LicenseProgramming Language :: Python :: 3Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13Topic :: Software Development :: Libraries :: Python Modules

🤖 AI Analysis

Final verdict: SAFE

The package shows minimal risks in terms of network usage, shell execution, obfuscation, and credential handling. However, the incomplete metadata and potentially inactive maintainer slightly elevate the concern level.

Incomplete author information
Potentially inactive maintainer

Per-check LLM notes

Network: No network calls detected, which is normal for packages not requiring external API interactions.
Shell: No shell execution patterns detected, indicating the package does not execute system commands.
Obfuscation: No obfuscation patterns detected, indicating low risk of code being hidden for malicious purposes.
Credentials: No credential harvesting patterns detected, suggesting the package does not pose a risk of stealing sensitive information.
Metadata: The author's information is incomplete, and the maintainer seems to be new or inactive, which raises some concerns but not enough to strongly suggest malice.

📦 Package Quality Overall: Low (3.8/10)

○ Low Test Suite 1.0

No test suite detected

No test files or test-runner configuration detected

◈ Medium Documentation 5.0

Some documentation present

Brief PyPI description (321 chars)

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

○ Low Type Annotations 1.0

No type annotations detected

No type annotations, py.typed marker, or stub files detected

✦ High Multiple Contributors 8.0

Active multi-contributor project

4 unique contributor(s) across 75 commits in CoreOxide/aws_resource_validator
Small but multi-author team (3–4 contributors)

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

✓ Code Obfuscation

No obfuscation patterns detected

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: gmail.com>

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository CoreOxide/aws_resource_validator appears legitimate

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with aws-resource-validator-inspector-scan

Develop a Python-based utility named 'InspectorScanAnalyzer' that leverages the 'aws-resource-validator-inspector-scan' package to validate and analyze AWS Inspector scan results. This tool will help DevOps teams ensure their resources comply with security best practices by providing insights into vulnerabilities detected during scans.

**Step-by-Step Requirements:**
1. **Setup Environment**: Ensure your environment has Python 3.8+ installed and set up a virtual environment. Install the necessary packages including 'aws-resource-validator-inspector-scan', boto3 (for AWS SDK), and pydantic for model validation.
2. **Authentication & Access**: Implement authentication using AWS IAM roles or credentials file for accessing AWS Inspector data. Ensure secure handling of these credentials.
3. **Data Retrieval**: Write functions to retrieve scan findings from AWS Inspector. Use the 'aws-resource-validator-inspector-scan' package to validate the retrieved data against predefined schemas.
4. **Analysis Module**: Develop an analysis module that processes validated scan findings. This module should categorize findings based on severity levels (Critical, High, Medium, Low, Info).
5. **Reporting**: Create a reporting feature that generates comprehensive reports summarizing the scan findings. Reports should include total number of findings, distribution by severity, and recommendations for remediation.
6. **CLI Interface**: Build a command-line interface (CLI) for users to interact with 'InspectorScanAnalyzer'. CLI commands should allow initiating scans, retrieving scan findings, running analysis, and generating reports.
7. **User Documentation**: Provide clear documentation on how to install and use 'InspectorScanAnalyzer'. Include examples and best practices for integrating it into existing CI/CD pipelines.

**Suggested Features**:
- Support for multiple AWS accounts and regions.
- Customizable thresholds for severity levels.
- Integration with popular logging services like AWS CloudWatch for monitoring.
- Real-time alerts for critical findings via email or Slack notifications.
- Support for exporting reports in various formats such as PDF, CSV, or JSON.

By following these steps and implementing the suggested features, you'll create a robust and user-friendly tool that enhances security compliance in AWS environments.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Low (3.8/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue