Package Metadata

Author: Microsoft Corporation
Email: ascl@microsoft.com
PyPI: azure-monitor-opentelemetry-exporter
Python: >=3.8
Versions: 51 releases
First release: 11 Feb 2021, 18:06 UTC
Analysed: 08 Jun 2026, 19:23 UTC
Source files: 62 .py files scanned

Project Links

Classifiers

Development Status :: 4 - BetaLicense :: OSI Approved :: MIT LicenseProgramming Language :: PythonProgramming Language :: Python :: 3Programming Language :: Python :: 3.10Programming Language :: Python :: 3.11Programming Language :: Python :: 3.12Programming Language :: Python :: 3.13Programming Language :: Python :: 3.14

🤖 AI Analysis

Final verdict: SUSPICIOUS

While the package appears legitimate with low risks for network, obfuscation, and credential harvesting, the high shell risk score suggests potential unauthorized modifications or access. Further investigation is warranted.

High shell risk
No clear indication of malicious intent
Potential supply-chain attack

Per-check LLM notes

Network: The network calls appear to be test requests and a legitimate check to Azure's official site, which is not indicative of malicious activity.
Shell: The shell execution pattern detected seems incomplete and suspicious, possibly indicating unauthorized access or modification attempts.
Obfuscation: The observed pattern is a common method for extending module search paths and is not indicative of malicious activity.
Credentials: No patterns indicating credential harvesting were detected.
Metadata: The author has only one package, suggesting a new or less active account, but no other red flags are present.

📦 Package Quality Overall: Medium (6.0/10)

◈ Medium Test Suite 6.0

Partial test coverage signals detected

2 test file(s) detected (e.g. __init__.py)

◈ Medium Documentation 5.0

Some documentation present

Detailed PyPI description (32105 chars)

○ Low Contributing Guide 4.0

No contributing guide or governance files found

Development Status classifier >= Beta

◈ Medium Type Annotations 5.0

Partial type annotation coverage

41 type-annotated function signatures detected in source

✦ High Multiple Contributors 10.0

Active multi-contributor project

35 unique contributor(s) across 100 commits in Azure/azure-sdk-for-python
Active community — 5 or more distinct contributors

🔬 Heuristic Checks

⚠ Outbound Network Calls score 4.5

Found 3 network call pattern(s)

st(): _success_response = requests.get("https://httpstat.us/200", timeout=5) _failure_response
ut=5) _failure_response = requests.get("https://httpstat.us/404", timeout=5) return "Test flask
pan("parent"): response = requests.get("https://azure.microsoft.com/", timeout=5) # Copyright (c)

⚠ Code Obfuscation score 4.0

Found 2 obfuscation pattern(s)

__path__ = __import__("pkgutil").extend_path(__path__, __name__) __path__ = __import__("pkg
path__, __name__) __path__ = __import__("pkgutil").extend_path(__path__, __name__) # type: ignore # coding=u

⚠ Shell / Subprocess Execution score 2.0

Found 1 shell execution pattern(s)

alse result = subprocess.run( [ ICACLS_PATH,

✓ Credential Harvesting

No credential harvesting patterns detected

✓ Typosquatting

No typosquatting candidates detected

✓ Registered Email Domain

Email domain looks legitimate: microsoft.com

✓ Suspicious Page Links

All external links appear legitimate

✓ Git Repository History

Repository Azure/azure-sdk-for-python appears legitimate

⚠ Maintainer History score 2.0

1 maintainer concern(s) found

Author "Microsoft Corporation" appears to have only 1 package on PyPI (new or inactive account)

✓ Known CVE Vulnerabilities

No known vulnerabilities found in OSV database.

💡 AI App Starter Prompt

Use this prompt to build a project with azure-monitor-opentelemetry-exporter

Build a simple Python application using the azure-monitor-opentelemetry-exporter package to demonstrate its core features.

💬 Discussion Feed

No discussion yet. Be the first to share your thoughts!

🤖 AI Analysis

📦 Package Quality Overall: Medium (6.0/10)

🔬 Heuristic Checks

💡 AI App Starter Prompt

💬 Discussion Feed

Leave a comment

Report Abuse / Security Issue