Embedded executable found, but project popularity and lack of strong evidence suggest it's not malware.
No verification record available.
The package contains an embedded executable named package/biome which has MIME type application/x-mach-binary. This could be a legitimate use case, such as a pre-compiled binary. The file extension mismatch is a low confidence signal and doesn't provide strong evidence of maliciousness. The project biomejs/biome has a high number of stars and forks, indicating it's a popular and likely legitimate project. Therefore, based on the available evidence, the package is not classified as malware.
