This analysis was performed using vet and SafeDep Cloud Malicious Package Analysis. Integrate with GitHub using vet-action GitHub Action.
Package not classified as malware. YARA rule python_exec_complex matched a javascript file, which is a known false positive.
The package @typescript-eslint/parser version 8.46.3 is not classified as malware. Although the YARA rule python_exec_complex matched parser.js, this rule is known to produce false positives when matching non-python files. The matched file is a javascript file, and there are no other strong indicators of malicious behavior.