Low popularity and OpenSSF score are not enough to classify as malware. Lacking stronger evidence, it's deemed not malicious.
No verification record available.
The package is flagged as having an untrustworthy source project due to low popularity and a low OpenSSF score. While this raises concerns about maintenance and community support, it's not sufficient evidence to classify the package as malware. There are no other indicators of malicious behavior.
