Package Metadata

Author: Microsoft Corporation
Email: [email protected]
PyPI: azure-keyvault-administration
Python: >=3.9
Versions: 20 releases
First release: 09 Sept 2020, 01:09 UTC
Analysed: 08 Jun 2026, 17:52 UTC
Source files: 62 .py files scanned

Project Links

Classifiers

Development Status :: 5 - Production/StableLicense :: OSI Approved :: MIT LicenseProgramming Language :: PythonProgramming Language :: Python :: 3Programming Language :: Python :: 3 :: OnlyProgramming Language :: Python :: 3.10Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13Programming Language :: Python :: 3.9

🤖 AI Analysis

Final verdict: SAFE

The package shows low risk indicators across all categories, with no signs of malicious behavior or supply-chain attacks.

No network calls or shell executions detected.
Base64 decoding appears to be used for legitimate data deserialization.

Per-check LLM notes

Network: No network calls detected, which is unusual but not necessarily indicative of malicious activity for an Azure Key Vault package, as it may rely on SDKs that handle communication internally.
Shell: No shell execution patterns detected, which aligns with the expectation for a legitimate Python package focused on Azure Key Vault administration.
Obfuscation: The observed Base64 decoding operations are likely for legitimate data deserialization rather than obfuscation.
Credentials: No suspicious patterns indicative of credential harvesting were detected.
Metadata: The author has only one package, which may indicate a new or less active account but does not strongly suggest malicious intent.

📦 Package Quality Overall: Medium (6.6/10)

✦ High Test Suite 9.0

Test suite present — 11 test file(s) found

Test runner config found: conftest.py
11 test file(s) detected (e.g. _async_test_case.py)

◈ Medium Documentation 5.0

Some documentation present

Detailed PyPI description (23361 chars)

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

◈ Medium Type Annotations 5.0

Partial type annotation coverage

231 type-annotated function signatures detected in source

✦ High Multiple Contributors 10.0

Active multi-contributor project

35 unique contributor(s) across 100 commits in Azure/azure-sdk-for-python
Active community — 5 or more distinct contributors

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

⚠ Code Obfuscation score 10.0

Found 5 obfuscation pattern(s)

-> str: status_url = base64.b64decode(continuation_token.encode()).decode("ascii") try:
return attr return bytes(base64.b64decode(attr)) def _deserialize_bytes_base64(attr): if isinsta
ce("_", "/") return bytes(base64.b64decode(encoded)) def _deserialize_duration(attr): if isinstan
__path__ = __import__("pkgutil").extend_path(__path__, __name__) # type: ignore __path__ =
) # type: ignore __path__ = __import__("pkgutil").extend_path(__path__, __name__) # type: ignore # --------

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: microsoft.com

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository Azure/azure-sdk-for-python appears legitimate

⚠ Maintainer History score 2.0

1 maintainer concern(s) found

Author "Microsoft Corporation" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with azure-keyvault-administration

Your task is to develop a mini-application named 'KeyVaultManager' using the Python package 'azure-keyvault-administration'. This tool will serve as a comprehensive interface for managing secrets within Azure Key Vault. Your goal is to create a user-friendly command-line interface (CLI) that allows users to perform various operations on their Key Vault resources.

### Core Features:
1. **List Secrets**: Allow users to list all secrets stored in a specified Key Vault.
2. **Create Secret**: Enable users to create new secrets in the Key Vault, specifying the secret name and value.
3. **Retrieve Secret**: Provide functionality to retrieve a specific secret by its name.
4. **Delete Secret**: Implement a feature to delete a secret from the Key Vault by providing the secret name.
5. **Update Secret**: Offer the ability to update an existing secret with a new value.

### Optional Enhancements:
- **Version Control**: Track versions of secrets when they are updated.
- **Access Policies**: Manage access policies for the Key Vault.
- **Backup/Restore**: Implement backup and restore functionalities for secrets.
- **Audit Logs**: Keep logs of all operations performed through the CLI.

### Utilization of 'azure-keyvault-administration':
- Use the 'SecretClient' class from the 'azure.keyvault.secrets' module to interact with the Key Vault.
- Ensure proper authentication and authorization using Azure Active Directory (Azure AD).
- Handle exceptions gracefully and provide meaningful error messages to the user.
- Optimize the CLI for usability, including help menus and command descriptions.

### Additional Requirements:
- Write clear, concise documentation for each feature.
- Include unit tests for each function to ensure reliability.
- The application should be deployable as a standalone script or package.

Your application should demonstrate proficiency in utilizing the 'azure-keyvault-administration' package to manage secrets securely and efficiently.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Medium (6.6/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue