@babel/core 7.28.3 is not malware. The python_exec_complex YARA rule match on a JS file is not sufficient evidence.
No verification record available.
The package @babel/core version 7.28.3 is not classified as malware based on the provided evidence. Although the YARA rule python_exec_complex matched the file package/lib/vendor/import-meta-resolve.js, this rule can be triggered by legitimate code that uses the exec function. The matched file is a javascript file, not a python file. A single YARA rule match is not sufficient to classify a package as malware. Furthermore, Babel is a widely used and trusted project with a large number of stars and forks on GitHub, which makes it less likely to be malicious.
