This analysis was performed using vet and SafeDep Cloud Malicious Package Analysis. Integrate with GitHub using vet-action GitHub Action.
YARA rule 'multiple_gcc_high' matched, indicating multiple GCC versions used. Insufficient evidence to classify as malware.
The YARA rule 'multiple_gcc_high' matched the rollup.linux-x64-gnu.node file, indicating it was built with multiple versions of GCC. While this is unusual, it's not strong evidence of malicious intent on its own. The other YARA matches are negative indicators, meaning they are designed to avoid false positives for Go or Java executables. Without stronger evidence or multiple corroborating signals, it's not possible to classify this package as malware.