Package Metadata

Author: —
Email: Alexy Grabov <[email protected]>, Yafit Tupman <[email protected]>
PyPI: aws-resource-validator-secretsmanager
Python: >=3.11
Versions: 3 releases
First release: 29 Apr 2026, 19:55 UTC
Analysed: 08 Jun 2026, 11:13 UTC
Source files: 1 .py file scanned

Project Links

Classifiers

Development Status :: 5 - Production/StableIntended Audience :: DevelopersLicense :: OSI Approved :: Apache Software LicenseProgramming Language :: Python :: 3Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13Topic :: Software Development :: Libraries :: Python Modules

🤖 AI Analysis

Final verdict: SAFE

The package shows no signs of malicious activity such as network calls, shell execution, obfuscation, or credential harvesting. However, the maintainer's new or inactive account and missing author information slightly increase the metadata risk.

No network calls or shell executions detected.
Maintainer has a new or inactive account with missing author information.

Per-check LLM notes

Network: No network calls detected, which is normal if the package does not require external communications.
Shell: No shell execution patterns detected, indicating the package does not attempt to execute system commands.
Obfuscation: No obfuscation patterns detected, indicating low risk of malicious intent.
Credentials: No credential harvesting patterns detected, suggesting safe handling of secrets and credentials.
Metadata: The maintainer has a new or inactive account with limited package history and missing author information.

📦 Package Quality Overall: Low (3.8/10)

○ Low Test Suite 1.0

No test suite detected

No test files or test-runner configuration detected

◈ Medium Documentation 5.0

Some documentation present

Brief PyPI description (321 chars)

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

○ Low Type Annotations 1.0

No type annotations detected

No type annotations, py.typed marker, or stub files detected

✦ High Multiple Contributors 8.0

Active multi-contributor project

4 unique contributor(s) across 75 commits in CoreOxide/aws_resource_validator
Small but multi-author team (3–4 contributors)

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

✓ Code Obfuscation

No obfuscation patterns detected

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: gmail.com>

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository CoreOxide/aws_resource_validator appears legitimate

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with aws-resource-validator-secretsmanager

Create a mini-application called 'SecretsManagerValidator' that leverages the 'aws-resource-validator-secretsmanager' package to validate and manage AWS Secrets Manager resources. This application will serve as a tool for developers and DevOps engineers to ensure that their secrets stored in AWS Secrets Manager adhere to specific validation rules and best practices. Here are the key steps and features your application should include:

1. **Setup**: Ensure your application has the necessary dependencies installed, including 'aws-resource-validator-secretsmanager', 'boto3', and 'Pydantic'. Provide instructions on setting up AWS credentials and permissions.
2. **Configuration**: Allow users to configure the application by specifying which AWS regions and secret names they want to validate. Users should also be able to define custom validation rules using Pydantic models provided by 'aws-resource-validator-secretsmanager'.
3. **Validation**: Implement a feature that retrieves secrets from AWS Secrets Manager and validates them against the specified rules. Highlight how the 'aws-resource-validator-secretsmanager' package simplifies the process of defining and applying these rules.
4. **Reporting**: Develop a reporting mechanism that outputs validation results in a user-friendly format, such as a CSV file or a formatted console output. Include information about any violations of the validation rules and suggestions for remediation.
5. **Automation**: Consider adding a feature that allows for automated periodic checks of secrets based on user-defined schedules. This could be achieved through scheduled tasks or cron jobs.
6. **User Interface**: Optionally, create a simple command-line interface (CLI) for interacting with the application. This CLI should support commands like 'validate', 'report', and 'schedule'.
7. **Documentation**: Provide comprehensive documentation explaining how to install and use the application, along with examples of common use cases and scenarios.

By following these steps, you'll create a powerful yet straightforward tool that enhances the security and management of AWS Secrets Manager resources.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Low (3.8/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue