Package Metadata

Author: —
Email: Alexy Grabov <[email protected]>, Yafit Tupman <[email protected]>
PyPI: aws-resource-validator-rolesanywhere
Python: >=3.11
Versions: 3 releases
First release: 29 Apr 2026, 18:50 UTC
Analysed: 08 Jun 2026, 10:44 UTC
Source files: 1 .py file scanned

Project Links

Classifiers

Development Status :: 5 - Production/StableIntended Audience :: DevelopersLicense :: OSI Approved :: Apache Software LicenseProgramming Language :: Python :: 3Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13Topic :: Software Development :: Libraries :: Python Modules

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package exhibits low risks in terms of network usage, shell execution, obfuscation, and credential handling. However, the metadata risk score is moderately high due to incomplete author information and a single associated PyPI package, raising concerns about potential supply-chain attacks.

Metadata risk due to missing author details and a single associated package on PyPI.
Low risk in other categories like network, shell, obfuscation, and credentials.

Per-check LLM notes

Network: No network calls detected, which is normal unless the package requires network interaction for its functionality.
Shell: No shell execution patterns detected, indicating no direct system command execution from the package.
Obfuscation: No obfuscation patterns detected, indicating low risk.
Credentials: No credential harvesting patterns detected, indicating low risk.
Metadata: The author's name is missing or very short, and the author has only one package on PyPI, which could indicate a less established or potentially suspicious account.

📦 Package Quality Overall: Low (3.8/10)

○ Low Test Suite 1.0

No test suite detected

No test files or test-runner configuration detected

◈ Medium Documentation 5.0

Some documentation present

Brief PyPI description (318 chars)

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

○ Low Type Annotations 1.0

No type annotations detected

No type annotations, py.typed marker, or stub files detected

✦ High Multiple Contributors 8.0

Active multi-contributor project

4 unique contributor(s) across 75 commits in CoreOxide/aws_resource_validator
Small but multi-author team (3–4 contributors)

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

✓ Code Obfuscation

No obfuscation patterns detected

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: gmail.com>

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository CoreOxide/aws_resource_validator appears legitimate

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with aws-resource-validator-rolesanywhere

Develop a Python-based utility named 'RoleValidator' that leverages the 'aws-resource-validator-rolesanywhere' package to validate AWS IAM roles against a set of predefined security policies and compliance standards. This utility will serve as a tool for DevOps engineers and security teams to ensure their IAM roles comply with organizational security guidelines.

### Project Overview:
1. **User Input:** Allow users to input the ARN (Amazon Resource Name) of an IAM role they wish to validate.
2. **Policy Loading:** Load the predefined security policies from a local YAML file or a remote URL.
3. **Validation Process:** Use the 'aws-resource-validator-rolesanywhere' package to validate the IAM role against the loaded policies.
4. **Output Report:** Generate a report indicating whether the IAM role passes all the validation checks or fails any. Include detailed information about the validation results, such as which policies were violated if applicable.
5. **Optional Features:**
   - Provide a CLI interface for easier usage.
   - Implement an option to automatically fetch and validate all IAM roles within a specified AWS account.
   - Support exporting the validation reports to a CSV or JSON file for further analysis.
6. **Utilization of 'aws-resource-validator-rolesanywhere':**
   - Utilize the Pydantic v2 models provided by 'aws-resource-validator-rolesanywhere' to define and validate the structure of the IAM role and its associated policies.
   - Ensure that the validation logic adheres to best practices and takes advantage of the advanced validation capabilities offered by the package.
7. **Documentation:**
   - Create comprehensive documentation that explains how to install and use the 'RoleValidator' utility, including examples of valid and invalid IAM roles based on the validation criteria.

This project aims to streamline the process of ensuring IAM roles adhere to strict security policies, thereby enhancing overall cloud security posture.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Low (3.8/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue