Package is not malware. YARA matches are in test files and have low confidence, suggesting legitimate testing rather than malicious intent.
No verification record available.
The package is not a malware. The majority of the YARA rule matches are the fake_openssh_0 rule in test files, which are likely used for testing SSH client and server implementations. The hardcoded_host_port_over_10k rule match is also in a test file, and the high entropy file is a compressed JSON file, which is not uncommon. Given that the confidence level of the YARA rules is low, and all matches are in test files, there is no strong evidence to classify this package as malware.
