Popular, well-established project. Embedded executable is expected for a build tool; extension mismatch is inconclusive.
No verification record available.
The evidence suggests a benign package. While Evidence 0 highlights an embedded executable (esbuild), this is expected for a build tool. Esbuild is a popular and widely used build tool; its high star count (38498) on GitHub and active development strongly suggest legitimacy. Evidence 1, a low-confidence extension mismatch, is not conclusive evidence of malicious intent. Many tools, especially cross-compiled binaries, might exhibit such mismatches. The absence of other suspicious behaviors (e.g., network connections, file system modifications, unusual process creation) further strengthens the conclusion that this is a false positive. The presence of an embedded executable alone is insufficient to classify it as malware, especially given the context of a well-known and reputable project.
