Windows Subsystem for Linux (WSL)

We are using nix via WSL and all seems to be working. One annoyance is that the .tar.gz files trip the (Symantec) AV (I think .tar.gz has a habit of tripping virus detection).

Could someone inject an attack into a nix derivation that would infect windows via WSL?

I am guessing we can tell the AV to ignore anything being placed into the directory / folder where WSL lives but is this wise?