Package Metadata

Author: —
Email: Alexy Grabov <[email protected]>, Yafit Tupman <[email protected]>
PyPI: aws-resource-validator-marketplace-reporting
Python: >=3.11
Versions: 3 releases
First release: 29 Apr 2026, 12:59 UTC
Analysed: 08 Jun 2026, 09:21 UTC
Source files: 1 .py file scanned

Project Links

Classifiers

Development Status :: 5 - Production/StableIntended Audience :: DevelopersLicense :: OSI Approved :: Apache Software LicenseProgramming Language :: Python :: 3Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13Topic :: Software Development :: Libraries :: Python Modules

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package shows low risks in terms of network calls, shell executions, obfuscations, and credential theft attempts. However, the missing maintainer information and potential inactivity raise concerns about its legitimacy.

Maintainer's author name is missing
Potential inactivity of the maintainer

Per-check LLM notes

Network: No network calls detected, which is normal if the package does not require external API interactions.
Shell: No shell execution patterns detected, indicating the package does not execute system commands.
Obfuscation: No obfuscation patterns detected, indicating low risk of malicious obfuscation.
Credentials: No credential harvesting patterns detected, indicating low risk of credential theft.
Metadata: The maintainer's author name is missing and they appear to be new or inactive, which raises some suspicion but does not definitively indicate malice.

📦 Package Quality Overall: Low (3.8/10)

○ Low Test Suite 1.0

No test suite detected

No test files or test-runner configuration detected

◈ Medium Documentation 5.0

Some documentation present

Brief PyPI description (342 chars)

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

○ Low Type Annotations 1.0

No type annotations detected

No type annotations, py.typed marker, or stub files detected

✦ High Multiple Contributors 8.0

Active multi-contributor project

4 unique contributor(s) across 75 commits in CoreOxide/aws_resource_validator
Small but multi-author team (3–4 contributors)

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

✓ Code Obfuscation

No obfuscation patterns detected

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: gmail.com>

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository CoreOxide/aws_resource_validator appears legitimate

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with aws-resource-validator-marketplace-reporting

Create a Python-based mini-application named 'MarketplaceAuditTool' which leverages the 'aws-resource-validator-marketplace-reporting' package to provide comprehensive auditing capabilities for AWS Marketplace resources. This tool should enable users to validate the integrity and compliance of their AWS Marketplace offerings based on predefined schemas provided by the package.

### Key Features:
1. **Resource Validation**: Implement a feature where users can input details of their AWS Marketplace resources (e.g., product ID, SKU, etc.) and the tool will validate these against the schemas defined in 'aws-resource-validator-marketplace-reporting'. This includes checking for correct data types, required fields, and any other constraints.
2. **Compliance Reporting**: Generate detailed reports indicating whether each resource complies with AWS Marketplace guidelines. These reports should highlight any discrepancies or missing information.
3. **Interactive CLI Interface**: Develop a user-friendly command-line interface (CLI) for interacting with the MarketplaceAuditTool. Users should be able to easily add, validate, and review their resources.
4. **Data Persistence**: Allow users to save validated resources and reports to a local database for future reference and auditing purposes.
5. **Automated Scheduling**: Enable users to schedule regular audits of their resources at specified intervals using a cron-like scheduler integrated into the tool.

### Utilizing 'aws-resource-validator-marketplace-reporting':
- Use the package to define the structure and validation rules for AWS Marketplace resources within your application.
- Integrate the validation logic from the package directly into the validation feature of your tool.
- Leverage the package's models to generate accurate and detailed compliance reports.

This project aims to streamline the process of maintaining AWS Marketplace resources by automating validation and reporting tasks, ensuring all resources adhere to AWS standards.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Low (3.8/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue