Comments (8)
update: A report has been submitted to Microsoft regarding the issue. It seems like it is targeting many public repository on js-based libraries. Some has linked this repository to mention about the false-positives the new Microsoft Defender update. I'll update when it is resolved.
from materialize.
A quick update, Microsoft has resolved at their end regarding the false positives. It should reflect later on when the next update comes.
from materialize.
The problem is fixed on my side, thx for the quick reaction.
@wuda-io I don't think that you should change your release workflow based on this.
from materialize.
Hi, could you verify that you've downloaded it from github? So far, based on this reddit post, this type of trojan is being flagged and have multiple false positive. I scanned the files on VirusTotal and could confirm there's no viruses detected.
VirusTotal scanned links:
materialize-v2.0.4: https://www.virustotal.com/gui/url/7b9046e977051c9f83573d89c224a418cce1bc50cb0f428104744fd2bd8a31c1
materialize-src-v2.0.4: https://www.virustotal.com/gui/url/fcaa99a78b62c7ec8d325d72b3686961aaf3b0d4626f98124a5741d22a4de951
materialize.js (src & non-src): https://www.virustotal.com/gui/file/782e94753a0d4bca82801a457486f137a3094dc74d3c4bf9eef8c149bfba2a5c
from materialize.
I don't know any way to technically confirm it but I just repeated the process again (download from GitHub) and I get the same warning.
I also had the feeling that it was a false positive. But now I'm curious what is suddenly triggering this message.
from materialize.
I don't know any way to technically confirm it but I just repeated the process again (download from GitHub) and I get the same warning.
I also had the feeling that it was a false positive. But now I'm curious what is suddenly triggering this message.
Yeah. I wouldn't trust much from Microsoft's side of antivirus. If you have more trusted antivirus (ex. Kaspersky or even Windows's bloatware antivirus McAfee) would yield better results. From the reddit, they said VirusTotal is quite trusted. And from VirusTotal also includes scans from Microsoft. Just let the computer a while and it should resolve later.
from materialize.
Hey guys, thanks for the quick investigation.
I updated the compression library via npm during the last release 2.0.4. Can this cause the issue? From my point of view, we can leave out the process of generating zip files completely.
Should we remove the zipping, what do you think?
from materialize.
@wuda-io I don't think that you should change your release workflow based on this.
Agreed.
from materialize.
Related Issues (20)
- [Bug]: Collapsible looks/behaviour changed in version 2.0.3 HOT 1
- .show-on-medium-and-up vs .hide-on-med-and-up HOT 1
- [Bug]: Autocomplete issues HOT 1
- [Bug]: Failed to resolve entry for package "@materializecss/materialize HOT 5
- [Bug]: Clicking on a dropdown trigger twice+ times consecutively causes unexpected results HOT 6
- Creating Components via JavaScript HOT 4
- [Bug]: Dropdown + Window Resize
- [Bug]: Select Options does not overflow cards
- [Bug]: Range input appearance not work on chrome 123, but work on Firefox
- [Bug]: TimePicker is completely broken
- [Bug]: Modal with Fixed Footer Always has Scrollbar HOT 1
- [Bug]: Tonal button seems not presenting HOT 1
- [Bug]: Autocomplete selectOption does nothing HOT 2
- Add "RAIL" material 3 HOT 3
- Marquee Component HOT 1
- Create Theme v2.1.0 HOT 6
- [Bug]: scrollbar appears with modal in 2.1.0 HOT 3
- [Bug]: Feature Discovery animation no longer works in 2.1.0 HOT 3
- samples at https://materializeweb.com/getting-started.html broken
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from materialize.