PyPi Malware Detection

Hi all,

wasn’t sure the best place to ask, but I’m a PhD research student and curious how the malware detection for PyPi actually works? I did some digging into the code and it seems like it essentially is just using some YARA rules and matching based off of that… but is there more to it?