{"success":true,"data":{"ext":"rpm","name":"RedHat Package Manager file","description":"Red Hat Package Manager (RPM) is a software package format and package-management system originally developed by Red Hat and maintained by the RPM project and Linux distributions. It is used to distribute, install, upgrade, and verify software on many Linux and Unix-like systems, especially in enterprise repositories and system administration workflows. Because RPM packages can install system-level files and scripts, they should be obtained only from trusted sources; the format remains widely used rather than obsolete.","mime":["application/x-rpm"],"risk_level":"High","signatures":[{"hex":"ED AB EE DB","offset":0,"sources":[{"name":"Apache Tika","url":"https://raw.githubusercontent.com/apache/tika/main/tika-core/src/main/resources/org/apache/tika/mime/tika-mimetypes.xml"},{"name":"Wikipedia","url":"https://en.wikipedia.org/wiki/List_of_file_signatures"},{"name":"Gary Kessler","url":"https://www.garykessler.net/library/file_sigs_GCK_latest.html"}]}],"related":[],"usage":{"python":"def is_rpm(file_path: str) -> bool:\n    \"\"\"Check if file is a valid RPM by magic bytes.\"\"\"\n    signature = bytes([0xED, 0xAB, 0xEE, 0xDB])\n    with open(file_path, \"rb\") as f:\n        return f.read(4) == signature","node":"function isRPM(buffer: Buffer): boolean {\n  const signature = Buffer.from([0xED, 0xAB, 0xEE, 0xDB]);\n  return buffer.subarray(0, 4).equals(signature);\n}","go":"func IsRPM(data []byte) bool {\n    signature := []byte{0xED, 0xAB, 0xEE, 0xDB}\n    if len(data) < 4 {\n        return false\n    }\n    return bytes.Equal(data[:4], signature)\n}"}}}