This analysis was performed using vet and SafeDep Cloud Malicious Package Analysis. Integrate with GitHub using vet-action GitHub Action.
Single low confidence YARA rule match is not sufficient to classify the package as malware.
The package is not a malware because there is only one YARA rule match (semicolon_relative_path_high) with low confidence. This single piece of evidence is insufficient to classify the package as malware.