Package Metadata

Author: —
Email: Alexy Grabov <[email protected]>, Yafit Tupman <[email protected]>
PyPI: aws-resource-validator-waf
Python: >=3.11
Versions: 3 releases
First release: 30 Apr 2026, 00:17 UTC
Analysed: 08 Jun 2026, 12:10 UTC
Source files: 1 .py file scanned

Project Links

Classifiers

Development Status :: 5 - Production/StableIntended Audience :: DevelopersLicense :: OSI Approved :: Apache Software LicenseProgramming Language :: Python :: 3Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13Topic :: Software Development :: Libraries :: Python Modules

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package exhibits low risks across network, shell, and obfuscation checks, but concerns arise due to the lack of detailed author information and potentially inactive maintainer account.

Low metadata risk due to incomplete author details
Maintainer account appears new or inactive

Per-check LLM notes

Network: No network calls detected, which is normal if the package does not require external communication.
Shell: No shell execution patterns detected, indicating no direct system command execution from the package.
Obfuscation: No obfuscation patterns detected, indicating low risk of code being hidden for malicious purposes.
Credentials: No credential harvesting patterns detected, suggesting the package does not pose a risk for stealing secrets or credentials.
Metadata: The maintainer has a new or inactive account and lacks detailed author information, which could indicate potential risk.

📦 Package Quality Overall: Low (3.8/10)

○ Low Test Suite 1.0

No test suite detected

No test files or test-runner configuration detected

◈ Medium Documentation 5.0

Some documentation present

Brief PyPI description (288 chars)

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

○ Low Type Annotations 1.0

No type annotations detected

No type annotations, py.typed marker, or stub files detected

✦ High Multiple Contributors 8.0

Active multi-contributor project

4 unique contributor(s) across 75 commits in CoreOxide/aws_resource_validator
Small but multi-author team (3–4 contributors)

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

✓ Code Obfuscation

No obfuscation patterns detected

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: gmail.com>

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository CoreOxide/aws_resource_validator appears legitimate

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with aws-resource-validator-waf

Create a small utility application using Python that leverages the 'aws-resource-validator-waf' package to validate AWS WAF resources. Your application should allow users to input details of their WAF resources (such as rules, web ACLs, etc.) and then validate these against the Pydantic v2 models provided by the package. This validation process will ensure that the configuration of the WAF resources is correct according to AWS specifications.

Step-by-step guide:
1. Set up your Python environment with the necessary packages, including 'aws-resource-validator-waf'.
2. Design a user-friendly interface where users can input details about their WAF resources.
3. Implement the validation logic using the Pydantic models from 'aws-resource-validator-waf'. This includes checking the structure and data types of the input against the AWS standards.
4. Provide feedback to the user indicating whether their resource configurations are valid or not, along with any specific errors found during validation.
5. Consider adding additional features such as saving validated configurations to a file or comparing different configurations to highlight differences.

Suggested Features:
- Support for multiple WAF resource types (rules, web ACLs, IP sets, etc.).
- Detailed error reporting when validation fails.
- Option to validate against specific AWS regions or account IDs.
- Saving validated configurations to JSON files for easy reference.
- A comparison tool that highlights differences between two WAF configurations.

This project will not only demonstrate the utility of the 'aws-resource-validator-waf' package but also provide a practical tool for developers working with AWS WAF.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Low (3.8/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue