search

junegunn / fzf

:cherry_blossom: A command-line fuzzy finder
https://junegunn.github.io/fzf/
MIT License
63.4k stars 2.36k forks source link

Trojan:Win32/Wacatac.B!ml #3690

Closed ateric closed 4 months ago

ateric commented 5 months ago 
Name Id           Version Source
--------------------------------
fzf  junegunn.fzf 0.48.1  winget

image

AddictArts commented 5 months ago

I wonder if this is a false positive? I had the same happen. Downloaded the latest from here,, releases. Placed the exe in AppData\Local\Microsoft\Winget\ ... and scanned again using the context menu "Scan with ...". Zero threats found, so the winget manifest must be compromised and where that is hosted and cached. Meaning the issue is not here? fyi.

hahv commented 5 months ago

version 0.48.0 does not get this one (scanned the binary pre-built file with MS Window Defender).

junegunn commented 5 months ago

Must be a false positive. This has happened multiple times in the past.

See #3174

junegunn commented 4 months ago

Closing as this is a false positive and we have a new release.