Embedded executable is common in build tools. High GitHub stars & forks reduce malware likelihood. Low-confidence extension mismatch.
No verification record available.
The evidence suggests a potentially benign package. While Evidence 0 highlights an embedded executable, this is not inherently malicious. Many legitimate packages, especially those involving compilation or build tools (like esbuild), include pre-compiled binaries for different architectures. Evidence 1, indicating an extension mismatch, is low confidence and could simply reflect a packaging issue or the use of a non-standard extension. The project's high star count (38498) and fork count (1176) on GitHub suggest a relatively well-known and trusted project, further reducing the likelihood of malicious intent. The absence of LLM-based analysis, which is considered more accurate than YARA rules, prevents a definitive conclusion, but the available evidence leans towards a false positive.
