The package is not a malware because the YARA rule js_hex_obfuscation is triggered due to the presence of hex color codes in devtools files.
No verification record available.
The package is not a malware because the YARA rule js_hex_obfuscation is triggered in *.map and *.ts files. The rule detects javascript function obfuscation(hex) because of the presence of hex values such as 0x000000, 0xffffff, 0x006bff, 0x8c49eb, and 0xffb200 in the devtools/utils files. These hex values are likely color codes and are related to the devtools functionality. The project has high stars and forks which indicates that it is a popular and trusted package. There is no strong evidence to classify this package as malware.
