This analysis was performed using vet and SafeDep Cloud Malicious Package Analysis. Integrate with GitHub using vet-action GitHub Action.
The package contains a macho executable, but high project popularity suggests it's a legitimate build tool. No strong evidence of malware.
The package @esbuild/darwin-x64 contains an embedded executable named esbuild which is identified as a macho file. The file extension mismatch is a low confidence indicator. While the presence of an executable warrants caution, the project esbuild has a significant number of stars and forks, suggesting it is a legitimate build tool. Without further evidence of malicious behavior, it is not possible to classify this package as malware.