Package Metadata

Author: —
Email: Ayzenberg <[email protected]>
PyPI: ayz-auth
Python: >=3.8
Versions: 21 releases
First release: 04 Jun 2025, 13:12 UTC
Analysed: 08 Jun 2026, 16:45 UTC
Source files: 33 .py files scanned

Project Links

Classifiers

Development Status :: 4 - BetaFramework :: FastAPIIntended Audience :: DevelopersLicense :: OSI Approved :: MIT LicenseProgramming Language :: Python :: 3Programming Language :: Python :: 3.10Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.8Programming Language :: Python :: 3.9

🤖 AI Analysis

Final verdict: SAFE

The package has minimal risks associated with network calls, shell execution, and obfuscation. However, there are some concerns regarding metadata that suggest potential author inactivity or low visibility, which could impact long-term maintenance.

No network calls detected
No shell execution patterns
Potential author inactivity

Per-check LLM notes

Network: No network calls detected, which is normal unless the package's functionality requires external communication.
Shell: No shell execution patterns detected, indicating no immediate signs of executing system commands.
Obfuscation: No obfuscation patterns detected, indicating low risk of malicious activity.
Credentials: No credential harvesting patterns detected, suggesting safe handling of secrets and credentials.
Metadata: The package shows signs of potential author inactivity and lack of repository visibility, raising concerns about maintenance and trustworthiness.

📦 Package Quality Overall: Medium (5.2/10)

✦ High Test Suite 9.0

Test suite present — 12 test file(s) found

Test runner config found: conftest.py
Test runner config found: pyproject.toml
12 test file(s) detected (e.g. __init__.py)

◈ Medium Documentation 5.0

Some documentation present

Detailed PyPI description (12523 chars)

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

◈ Medium Type Annotations 7.0

Partial type annotation coverage

Type checker (mypy / pyright / pytype) referenced in project
98 type-annotated function signatures detected in source

○ Low Multiple Contributors 1.0

Could not retrieve contributor data from GitHub

GitHub API error: 404

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

✓ Code Obfuscation

No obfuscation patterns detected

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: ayzenberg.com>

✓ Suspicious Page Links

All external links appear legitimate

⚠ Git Repository History score 3.0

Repository not found (deleted or private)

Repository not found (deleted or private)

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with ayz-auth

Create a comprehensive mini-application using the 'ayz-auth' Python package, which integrates Stytch B2B authentication with Redis caching, MongoDB entitlements, and stateless team context. This application will serve as a user management system for a fictional company, allowing administrators to manage users, teams, and roles efficiently. The application should include the following functionalities:

1. User Registration: Users should be able to register through the application using their email address and password. Upon registration, they should be authenticated via Stytch and their session details cached in Redis.
2. User Login: Registered users should be able to log into the application, with their login sessions managed by the 'ayz-auth' package and stored in Redis.
3. Team Management: Admin users should have the ability to create, edit, and delete teams within the application. Teams should be managed statelessly, adhering to the 'ayz-auth' package's design principles.
4. User Roles and Permissions: Each user should be assigned specific roles within teams, with these roles being stored in MongoDB and managed through the 'ayz-auth' package's entitlements feature.
5. Role-Based Access Control: Implement role-based access control (RBAC) so that users can only access resources and perform actions based on their assigned roles.
6. Session Management: Utilize Redis to cache user sessions for quick access and efficient management of active users.
7. Entitlement Verification: Use MongoDB to store and verify user entitlements, ensuring that actions taken by users align with their assigned roles and permissions.
8. Stateless Team Context: Ensure that the application maintains a stateless approach to team context, leveraging the 'ayz-auth' package's capabilities for seamless user experience across different sessions and devices.

Your task is to design and implement this application using FastAPI, integrating the 'ayz-auth' package for authentication, caching, and entitlement management. Document each step of your implementation process, including any challenges faced and solutions implemented. Additionally, provide a brief explanation of how each core feature of 'ayz-auth' contributes to the functionality and security of your application.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Medium (5.2/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue