Package Metadata

Author: —
Email: Alexy Grabov <[email protected]>, Yafit Tupman <[email protected]>
PyPI: aws-resource-validator-mgh
Python: >=3.11
Versions: 3 releases
First release: 29 Apr 2026, 14:05 UTC
Analysed: 08 Jun 2026, 09:33 UTC
Source files: 1 .py file scanned

Project Links

Classifiers

Development Status :: 5 - Production/StableIntended Audience :: DevelopersLicense :: OSI Approved :: Apache Software LicenseProgramming Language :: Python :: 3Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13Topic :: Software Development :: Libraries :: Python Modules

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package shows low risks in terms of network calls, shell execution, obfuscation, and credential handling. However, the metadata risk due to the maintainer's new or inactive account and lack of proper author identification raises some suspicion.

Metadata risk due to maintainer's account status
Lack of proper maintainer identification

Per-check LLM notes

Network: No network calls detected, which is normal if the package does not require external API interactions.
Shell: No shell execution patterns detected, indicating the package does not execute system commands.
Obfuscation: No obfuscation patterns detected, indicating low risk of malicious activity.
Credentials: No credential harvesting patterns detected, suggesting safe handling of sensitive information.
Metadata: The maintainer has a new or inactive account and lacks a proper author name, raising some suspicion but not conclusive evidence of malice.

📦 Package Quality Overall: Low (3.8/10)

○ Low Test Suite 1.0

No test suite detected

No test files or test-runner configuration detected

◈ Medium Documentation 5.0

Some documentation present

Brief PyPI description (288 chars)

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

○ Low Type Annotations 1.0

No type annotations detected

No type annotations, py.typed marker, or stub files detected

✦ High Multiple Contributors 8.0

Active multi-contributor project

4 unique contributor(s) across 75 commits in CoreOxide/aws_resource_validator
Small but multi-author team (3–4 contributors)

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

✓ Code Obfuscation

No obfuscation patterns detected

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: gmail.com>

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository CoreOxide/aws_resource_validator appears legitimate

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with aws-resource-validator-mgh

Create a mini-application called 'MigrationsHealthChecker' that leverages the 'aws-resource-validator-mgh' Python package to validate AWS Migration Hub resources. This tool will serve as a health checker for AWS Migration Hub (mgh) resources, ensuring they meet specific criteria and are configured correctly. The application should be able to parse a configuration file (in YAML format) containing details of the resources to check and their expected states, then validate these against AWS using the provided Pydantic models.

Step 1: Define the Configuration File Format
- The configuration file should specify resource types (e.g., MIGRATION_GROUP, APPLICATION, SERVER), their unique identifiers, and the expected attributes such as status, tags, etc.

Step 2: Implement Resource Validation Logic
- Use the Pydantic models from 'aws-resource-validator-mgh' to define schemas for different AWS Migration Hub resources.
- Write functions that take in a resource's metadata from the configuration file and validate it against the AWS environment using Boto3 (AWS SDK for Python).

Step 3: Integrate Error Handling and Reporting
- Implement error handling for common issues like invalid credentials, unreachable AWS services, or mismatches between the expected state and actual state of resources.
- Generate a report at the end summarizing the validation results, including any discrepancies found and suggestions for corrective actions.

Suggested Features:
- Support for multiple AWS regions and accounts through configuration.
- Ability to schedule periodic checks via cron jobs or similar mechanisms.
- Integration with AWS CloudWatch for logging and alerting based on validation outcomes.
- User-friendly CLI interface for running checks and viewing reports.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Low (3.8/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue