Package Metadata

Author: —
Email: Microsoft Corporation <[email protected]> License-Expression: MIT
PyPI: azure-keyvault-keys
Python: >=3.9
Versions: 41 releases
First release: 28 Jun 2019, 23:40 UTC
Analysed: 08 Jun 2026, 17:53 UTC
Source files: 62 .py files scanned

Project Links

Classifiers

Development Status :: 5 - Production/StableProgramming Language :: PythonProgramming Language :: Python :: 3Programming Language :: Python :: 3 :: OnlyProgramming Language :: Python :: 3.10Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13Programming Language :: Python :: 3.9

🤖 AI Analysis

Final verdict: SAFE

The package shows low risks across most categories, with only moderate concerns about obfuscation and metadata. These do not strongly indicate malicious behavior.

moderate obfuscation risk due to base64 decoding and potential eval usage
metadata risk due to limited maintainer details

Per-check LLM notes

Network: No network calls detected, which is normal if the package is designed to be used offline or with minimal external dependencies.
Shell: No shell execution patterns detected, which is expected for a standard Python package.
Obfuscation: The observed patterns suggest base64 decoding and potential use of eval, which could be used for obfuscation but might also be legitimate for handling encoded data in a cryptographic context.
Credentials: No clear signs of credential harvesting detected.
Metadata: The maintainer has a new or inactive account and lacks detailed author information, which raises some concern but does not strongly indicate malicious intent.

📦 Package Quality Overall: Medium (5.4/10)

○ Low Test Suite 1.0

No test suite detected

No test files or test-runner configuration detected

◈ Medium Documentation 5.0

Some documentation present

Detailed PyPI description (48464 chars)

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

◈ Medium Type Annotations 7.0

Partial type annotation coverage

Type checker (mypy / pyright / pytype) referenced in project
406 type-annotated function signatures detected in source

✦ High Multiple Contributors 10.0

Active multi-contributor project

35 unique contributor(s) across 100 commits in Azure/azure-sdk-for-python
Active community — 5 or more distinct contributors

🔬 Heuristic Checks

✓ Outbound Network Calls

No suspicious network call patterns found

⚠ Code Obfuscation score 8.0

Found 4 obfuscation pattern(s)

return attr return bytes(base64.b64decode(attr)) def _deserialize_bytes_base64(attr): if isinsta
ce("_", "/") return bytes(base64.b64decode(encoded)) def _deserialize_duration(attr): if isinstan
_unicode(data) return eval(data_type)(data) # nosec # pylint: disable=eval-used @
_unicode(attr) return eval(data_type)(attr) # nosec # pylint: disable=eval-used @

✓ Shell / Subprocess Execution

No shell execution patterns detected

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: microsoft.com> license-expression: mit

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository Azure/azure-sdk-for-python appears legitimate

⚠ Maintainer History score 4.0

2 maintainer concern(s) found

Author name is missing or very short
Author "" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with azure-keyvault-keys

Develop a secure key management utility using the 'azure-keyvault-keys' Python package. This utility will enable users to manage cryptographic keys stored in Azure Key Vault, providing operations such as creating, updating, deleting, and retrieving keys. Additionally, it should include features like generating random keys and encrypting/decrypting data with these keys. The application should also support authentication via Azure Active Directory (AAD) and ensure all communications with Azure Key Vault are securely encrypted.

Step-by-Step Requirements:
1. Set up an Azure Key Vault instance and obtain necessary credentials (tenant ID, client ID, client secret).
2. Use 'azure-keyvault-keys' to authenticate your application with Azure AD and access the Key Vault.
3. Implement functions to create new RSA keys in the Key Vault, specifying key size and other parameters.
4. Add functionality to retrieve existing keys from the Key Vault by name.
5. Include options to update properties of a key, such as enabling/disabling the key.
6. Allow deletion of keys from the Key Vault.
7. Provide a method to generate a random key within the application and store it in the Key Vault.
8. Implement encryption and decryption functionalities using the stored keys for any given plaintext data.
9. Ensure all interactions with Azure Key Vault are logged for auditing purposes.
10. Write unit tests to validate the correctness and security of your implementation.

Suggested Features:
- User-friendly command-line interface for easy interaction.
- Support for both synchronous and asynchronous calls to Azure Key Vault.
- Integration with popular logging frameworks for detailed logging.
- Option to configure logging level and output format.
- Detailed documentation and examples for quick start and advanced usage.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Medium (5.4/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue