raeh-data

v0.1.0 suspicious
8.0
High Risk

Shared data-access library for RAEH biomedical signal datasets

🤖 AI Analysis

Final verdict: SUSPICIOUS

The package exhibits high risks related to credential management and metadata integrity, raising concerns about potential malicious intent or supply-chain compromise.

  • High credential risk due to direct access of AWS credentials
  • Red flags in metadata suggest a new and potentially untrusted author
Per-check LLM notes
  • Network: No network calls detected, which is normal unless the package requires external services.
  • Shell: No shell executions detected, indicating the package does not perform system-level operations.
  • Obfuscation: No obfuscation patterns detected.
  • Credentials: High risk of credential harvesting as the package accesses environment variables and AWS credentials directly.
  • Metadata: The package shows several red flags including a lack of maintainer history and a newly registered author with no other packages.

🔬 Heuristic Checks

Outbound Network Calls

No suspicious network call patterns found

Code Obfuscation

No obfuscation patterns detected

Shell / Subprocess Execution

No shell execution patterns detected

Credential Harvesting score 10.0

Found 4 credential access pattern(s)

  • field(default_factory=lambda: os.getenv("AWS_DEFAULT_REGION", "ap-south-1")) access_key: str = field(
  • field(default_factory=lambda: os.getenv("AWS_ACCESS_KEY_ID", "")) secret_key: str = field(default_fac
  • field(default_factory=lambda: os.getenv("AWS_SECRET_ACCESS_KEY", "")) cache_dir: Path = field(default
  • login`), named profiles in ~/.aws/credentials, AWS_PROFILE, # AssumeRole, web-identity federation
Typosquatting

No typosquatting candidates detected

Registered Email Domain

Email domain looks legitimate: raeh.io>

Suspicious Page Links

All external links appear legitimate

Git Repository History

No GitHub repository linked

  • No GitHub repository link found
Maintainer History score 8.0

4 maintainer concern(s) found

  • Only one version has ever been released — brand new package
  • Package uploaded less than 24 hours ago (2026-06-05T03:16:13.000Z)
  • Author name is missing or very short
  • Author "" appears to have only 1 package on PyPI (new or inactive account)