This analysis was performed using vet and SafeDep Cloud Malicious Package Analysis. Integrate with GitHub using vet-action GitHub Action.
Contains an embedded executable, but could be a legitimate pre-compiled binary. Insufficient evidence to classify as malware.
The package @esbuild/netbsd-arm64 contains an embedded executable package/bin/esbuild. While this raises a flag for potential security risks, it is also a valid use case for pre-compiled binaries. Without further evidence of malicious behavior, it's not possible to classify it as malware.