The package @esbuild/darwin-arm64 contains an embedded executable (package/bin/esbuild), which is expected for a darwin-arm64 executable distributor. The extension mismatch and high entropy trailer are suspicious, but not sufficient to classify the package as malware given the legitimate use case. The YARA rule high_entropy_trailer alone is not enough evidence.