Closed doggy8088 closed 6 months ago
The windows executable been detected 2 security vendors and no sandboxes flagged this file as malicious. So, it's always in the pending state now. 😢
@doggy8088 I have no idea how to fix it.
I'm in the moderation queue of the chocolatey right now. It could (may be) release my package soon. I'm in the second page of the 299 packages at this moment.
Good news! The very first chocolatey package already been approved TODAY.
I already pushed 0.7.0 to the Chocolatey repository. It should approved much quicker than first one.
@doggy8088 Thanks. For Windows users, it is a great blessing.
There are more Security vendors reported this CodeGPT-0.7.0-windows-amd64.exe
file marked as Malicious
. That's too bad. 😞
0.7.0
Approved and Released. 🎉
@appleboy My package is about to removal. 🫤
In cases where actual malware is found, the packages are subject to removal. Software sometimes has false positives. Moderators do not necessarily validate the safety of the underlying software, only that a package retrieves software from the official distribution point and/or validate embedded software against official distribution point (where distribution rights allow redistribution).
This morning, I released version 0.10.0. Does this version still have the same issue?
Do you do anything different from 0.8.0 to 0.9.0?
@doggy8088 Just support Groq API. You can reference https://github.com/appleboy/CodeGPT/releases
@doggy8088 I also bump the go dependency for security issues.
What's the function calling feature for?
@doggy8088 Just update the model list from OpenAI Docs that support function calling.
I scanned you latest version: CodeGPT-0.10.0-windows-amd64.exe
It still detected as a Malware. That's really annoying! >"<
https://www.virustotal.com/gui/file/2cbffca515103c765b28b0b8fe90783f9ca26ea119e821378d598258d3bf25ac
@doggy8088 Can you re-submit or re-run the scan process?
@appleboy Did you change anything? I re-scan again.
The codegpt 0.10.0
has been approved. 🎉
https://community.chocolatey.org/packages/codegpt#versionhistory
I think the false-positive issue still remains. The issue will be happen from time to time.
Chocolatey is software management automation for Windows that wraps installers, executables, zips, and scripts into compiled packages.
I made a Chocolatey package for this project: https://community.chocolatey.org/packages/codegpt
The package hasn't been approved by a moderator yet. So it might wait for a couple days to release. After it been released, I will check for new version of this repo daily by CI/CD and release to the Chocolatey repository automatically.