-
-
Notifications
You must be signed in to change notification settings - Fork 634
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
virus detected in latest lwjgl.zip download by ms edge #1005
Comments
not even turning ms defender smartscreen off in the ms edge browser settings changes that, still says virus detected. |
MS Defender detected multiple files it labeled a Trojan when I attempted to unzip the file. |
Hey @goofyseeker311 @Daedelus1, I've been trying to figure out what is going on and I've also asked people from LWJGL's discord server to help. So far, there hasn't been any evidence that these are real infections. Something appears to be triggering false positives, with the most likely reason being the switch to compilation with clang-cl (i.e. Visual Studio's Clang/LLVM compiler for Windows) in 3.3.4. Another oddity is that most detections happen with the x86 binaries, much fewer with the x64 ones. This is of course a very serious matter and investigation is ongoing. If anyone can help and/or has information to share, please contact me directly (preferably on Discord). For now, I have the removed the offending zip file from the Github release. You can find the same file, as well as the individual dlls from the LWJGL website: https://www.lwjgl.org/browse/release/3.3.4 |
same for the main site latest releases lwjgl.zip and lwjgl-3.3.4.zip, virus detected by edge/windows defender, only the custom packages pass. just to be aware that this happens, I will only use the custom packages that are not detected. not risking it. these urls are complained by edge/msdefender: |
Version
3.3.4
Platform
Windows x64
JDK
oracle openjdk 22
Module
lwjgl core
Bug description
ms edge browser claims there is a virus on the main 300mb download package.
verify that its not the case and if ms edge has marked the file without reason.
custom zip files from the main website do not give that warning with same browser.
maybe check if the github redistributable everything file has problems.
Stacktrace or crash log output
The text was updated successfully, but these errors were encountered: