This analysis was performed using vet and SafeDep Cloud Malicious Package Analysis. Integrate with GitHub using vet-action GitHub Action.
Single YARA rule match ('very_high_entropy') is insufficient to classify the package as malware. More evidence is needed.
The provided evidence consists of a single YARA rule match ('very_high_entropy') on the rollup.android-arm-eabi.node file. While high entropy can sometimes be indicative of obfuscation or compression used by malware, it is not a strong enough indicator on its own to classify a package as malicious. Without further supporting evidence, it is not possible to determine if the package is a malware.