Malware Python/Patator.A

PlumpMath · December 1, 2021, 2:11pm

.
…/python-modules/patator/default.nix

NobbZ · December 1, 2021, 2:35pm

I do not quite understand, what exactly do you want to tell us with this post?

PlumpMath · December 1, 2021, 2:39pm

ah sorry;;

The file in nixpkgs keeps being recognized as a virus.
why is this?

Mindavi · December 1, 2021, 3:50pm

It’s (probably?) a hacking tool: GitHub - lanjelot/patator: Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.. Some virusscanners flag those as viruses/(which is defensible, but can be annoying).

ius · December 1, 2021, 7:10pm

Not in this case though, since it’s flagging the nix expression used to build the package, instead of the tool itself. The expression doesn’t contain anything other than the tool’s name and a two word description (which is also part of the tool itself).

The AV signature is bogus.

Mindavi · December 2, 2021, 7:04am

Yes, that’s bad. Sometimes it flags on urls, but an expression like this should not be flagged.