Package Metadata

Author: —
Email: Alexy Grabov <[email protected]>, Yafit Tupman <[email protected]>
PyPI: aws-resource-validator-kms
Python: >=3.11
Versions: 3 releases
First release: 29 Apr 2026, 11:04 UTC
Analysed: 08 Jun 2026, 08:53 UTC
Source files: 1 .py file scanned

Project Links

Classifiers

Development Status :: 5 - Production/StableIntended Audience :: DevelopersLicense :: OSI Approved :: Apache Software LicenseProgramming Language :: Python :: 3Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13Topic :: Software Development :: Libraries :: Python Modules

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package shows no immediate signs of malicious activity, but incomplete author information and low maintainer activity raise concerns about its legitimacy.

Incomplete author information
Limited maintainer activity

Per-check LLM notes

Network: No network calls suggest the package does not perform external communications which is unusual but not necessarily indicative of malicious activity without further context.
Shell: No shell execution patterns detected, indicating the package does not execute system commands, which is normal and expected.
Obfuscation: No obfuscation patterns detected, indicating likely legitimate use.
Credentials: No credential harvesting patterns detected, suggesting no malicious intent towards stealing secrets.
Metadata: The author information is incomplete and the maintainer has limited activity, raising some concerns but not definitive evidence of malicious intent.

📦 Package Quality Overall: Low (3.8/10)

○ Low Test Suite 1.0

No test suite detected

No test files or test-runner configuration detected

◈ Medium Documentation 5.0

Some documentation present

Brief PyPI description (288 chars)

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

○ Low Type Annotations 1.0

No type annotations detected

No type annotations, py.typed marker, or stub files detected

✦ High Multiple Contributors 8.0

Active multi-contributor project

4 unique contributor(s) across 75 commits in CoreOxide/aws_resource_validator
Small but multi-author team (3–4 contributors)

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

✓ Code Obfuscation

No obfuscation patterns detected

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: gmail.com>

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository CoreOxide/aws_resource_validator appears legitimate

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with aws-resource-validator-kms

Create a Python-based mini-application named 'KMSHealthChecker' which serves as a tool to validate and monitor the health status of AWS KMS keys. This application will use the 'aws-resource-validator-kms' package to ensure that all KMS keys in a given AWS account meet specific criteria and are functioning correctly. Here are the steps and features your application should include:

1. **Setup**: Start by installing the necessary packages including 'aws-resource-validator-kms', Boto3 (AWS SDK for Python), and Pydantic. Ensure you have the correct AWS credentials configured.
2. **Configuration**: Allow users to configure their AWS region, list of KMS keys to check, and specify validation criteria such as key state (Enabled/Disabled/PendingDeletion), usage (Encryption/Decryption), etc.
3. **Validation Logic**: Implement validation logic using the 'aws-resource-validator-kms' package to validate each KMS key against the specified criteria. Use Pydantic models provided by the package to structure and validate the KMS key data.
4. **Health Check**: For each KMS key, perform a health check to ensure it is operational and meets all criteria. Output a report indicating whether each key passes or fails the checks.
5. **Notification System**: Integrate a simple notification system that sends alerts via email or SMS if any KMS key does not pass the validation or health checks. Users should be able to choose their preferred method of alerting.
6. **User Interface**: Develop a basic command-line interface (CLI) for the application where users can input their configurations and see the results of the validations and health checks.
7. **Documentation**: Provide clear documentation on how to install, configure, and run the application, including examples of valid configurations and expected outputs.

The 'aws-resource-validator-kms' package is crucial here as it provides the necessary Pydantic models for validating AWS KMS keys according to the AWS API specifications, ensuring that the validation logic is accurate and up-to-date.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Low (3.8/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue