Summary

Single low confidence YARA rule match python_exec_complex in a Javascript file is insufficient to classify package as malware.

Verification Record

No verification record available.

Details

The package @typescript-eslint/parser version 8.58.0 is not classified as malware. The only evidence is a single YARA rule match (python_exec_complex) in parser.js. This rule detects code execution from a complex expression. However, the rule is named python_exec_complex and the matched file is a Javascript file. Therefore, this single low confidence YARA rule match is not sufficient to classify the package as malware.

Summary

Single low confidence YARA rule match python_exec_complex in a Javascript file is insufficient to classify package as malware.

Verification Record

No verification record available.

Details

@typescript-eslint/parser@8.58.0Clean

Unverified

Analysed at: 3/30/26, 5:30 PM

Source: https://registry.npmjs.org/@typescript-eslint/parser/-/parser-8.58.0.tgz

SHA256: dc53e35ed3e0c3b06abee3e5617cd3d61801935e40b0b751cc5e1d936c7cbe19

Confidence: Medium