Package Metadata

Author: —
Email: Amazon Web Services <[email protected]>
PyPI: aws-sam-cli
Python: >=3.10
Versions: 241 releases
First release: 08 May 2018, 20:31 UTC
Analysed: 08 Jun 2026, 12:24 UTC
Source files: 66 .py files scanned

Project Links

Classifiers

Development Status :: 5 - Production/StableEnvironment :: ConsoleEnvironment :: Other EnvironmentIntended Audience :: DevelopersIntended Audience :: Information TechnologyOperating System :: OS IndependentProgramming Language :: PythonProgramming Language :: Python :: 3Programming Language :: Python :: 3 :: OnlyProgramming Language :: Python :: 3.10

🤖 AI Analysis

Final verdict: SAFE

The package shows low risks across all categories with no network calls, shell executions, or credential risks detected. The metadata risk is slightly elevated due to incomplete maintainer information, but this does not indicate any malicious activity.

Low network and shell execution risks
No evidence of credential harvesting
Metadata risk due to incomplete maintainer information

Per-check LLM notes

Network: No network calls detected, which is normal for a package not requiring external API interactions.
Shell: No shell execution detected, which is expected for a typical Python CLI tool.
Obfuscation: The observed pattern is likely for legitimate module discovery rather than obfuscation.
Credentials: No suspicious patterns related to credential harvesting were detected.
Metadata: The maintainer's author information is incomplete and may indicate a less experienced or new user, but there are no other suspicious flags.

📦 Package Quality Overall: Medium (5.0/10)

○ Low Test Suite 1.0

No test suite detected

No test files or test-runner configuration detected

◈ Medium Documentation 5.0

Some documentation present

Detailed PyPI description (8286 chars)

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

◈ Medium Type Annotations 5.0

Partial type annotation coverage

103 type-annotated function signatures detected in source

✦ High Multiple Contributors 10.0

Active multi-contributor project

15 unique contributor(s) across 100 commits in aws/aws-sam-cli
Active community — 5 or more distinct contributors

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

⚠ Code Obfuscation score 4.0

Found 2 obfuscation pattern(s)

spkg: submodule = __import__(pkg.name) walk_modules(submodule, visited) samcli_modul
es = set(["samcli"]) samcli = __import__("samcli") walk_modules(samcli, samcli_modules) SAM_CLI_HIDDEN_IMPORT

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: amazon.com>

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository aws/aws-sam-cli appears legitimate

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with aws-sam-cli

Create a simple weather forecast microservice using AWS SAM CLI and deploy it locally for testing. This project aims to demonstrate the capabilities of AWS SAM CLI in developing serverless applications. The microservice will fetch current weather data from a public API and return it as a JSON response.

Steps:
1. Set up your development environment with Python and AWS SAM CLI installed.
2. Initialize a new SAM project using AWS SAM CLI, specifying Python as the runtime language.
3. Define the Lambda function within the SAM template that will call a weather API (such as OpenWeatherMap).
4. Implement error handling for API requests and exceptions.
5. Use AWS SAM CLI to build and package the project.
6. Deploy the project locally using SAM CLI for testing without needing to push to AWS cloud services immediately.
7. Test the deployed service using curl or a similar tool, ensuring you can get back valid JSON responses with weather information.
8. Document your setup process, including any configuration files needed to run the service locally.

Features:
- Fetch current weather data from a public API.
- Return the data in a structured JSON format.
- Handle errors gracefully, providing informative messages when something goes wrong.
- Allow for easy deployment and testing locally before moving to the cloud.

How AWS SAM CLI is utilized:
- AWS SAM CLI is used to initialize the project structure and create the necessary files for defining the Lambda function and its dependencies.
- It is also used to build and package the application, making sure all components are correctly assembled.
- Finally, AWS SAM CLI deploys the application locally, allowing developers to test their code in an environment that closely mimics AWS Lambda.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Medium (5.0/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue