Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

VirusTotal detects cyclonedx-win-x64.exe version 0.27.2 24 Nov 2024 as a Malicious file notified by SecureAge Acronis (Static ML) #417

Open
freygagne opened this issue Jan 3, 2025 · 1 comment
Open

VirusTotal detects cyclonedx-win-x64.exe version 0.27.2 24 Nov 2024 as a Malicious file notified by SecureAge Acronis (Static ML) #417

freygagne opened this issue Jan 3, 2025 · 1 comment

Comments

@freygagne
Copy link

The latest version 0.27.2 24 Nov 2024 of cyclonedx cli cyclonedx-win-x64.exe is seen by VirusTotal
SecureAge Acronis as Malicious File .
https://github.com/CycloneDX/cyclonedx-cli/releases/download/v0.27.2/cyclonedx-win-x64.exe

Is it a false positive ?

I need to be sure the cyclonedx cli binary is exempted of virus to respect the cybersecurity policy of my company...

Image
@mtsfoni
Copy link
Contributor

mtsfoni commented Jan 3, 2025

Is it a false positive ?

Most likely. This is maintained by members of the cyclonedx organisation. I did the last few releases and the one in question.
I have not seen anything suspicios in the source code nor was anything reported. The release are created via github actions and stored on github.

To be sure, you could download the sourcecode and build locally after checking the code for yourself. Or contact the the security vendor and report it as a false positive hoping they will give you confirmation that it is indeed a false positive.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@freygagne @mtsfoni