The package contains an executable flagged by YARA rules, but the project's popularity suggests it's likely legitimate. Insufficient evidence for malware.
No verification record available.
The package @esbuild/linux-ia32 contains an embedded executable package/bin/esbuild, which is flagged by multiple YARA rules related to high entropy footer and potential RC4 encryption. However, the project esbuild has a substantial number of stars and forks, indicating a widely used and likely legitimate project. Given that there are valid use cases for embedding executables and the low confidence of the YARA rule matches, there is not enough evidence to classify this package as malware. Classifying based on the presence of an executable and low confidence YARA rules would be premature, especially considering the project's popularity.
