Uploaded image for project: 'Couchbase Python Client Library'
  1. Couchbase Python Client Library
  2. PYCBC-364

Trying to download Python package from pypi - suspected malware by Windows defender

    XMLWordPrintable

Details

    • Bug
    • Status: Closed
    • Blocker
    • Resolution: Cannot Reproduce
    • 2.1.2
    • None
    • library
    • Windows

    Description

      Trying to download packages from pypi https://pypi.python.org/pypi/couchbase#downloads causing an alert that the file is a virus or malware.
      tested in Windows 8.1.

      Attachments

        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

        Activity

          Ascending order - Click to sort in descending order
          View 6 older comments
          roi.katz Roi Katz added a comment -

          So is there any foreseeable way of solving it without disabling Defender?

          roi.katz Roi Katz added a comment - So is there any foreseeable way of solving it without disabling Defender?
          mnunberg Mark Nunberg (Inactive) added a comment -

          I suppose I can try and rebuild it.. though I don't know why it would have failed the first time :/ Let me know what version you need and I'll see if I can upload it here.

          mnunberg Mark Nunberg (Inactive) added a comment - I suppose I can try and rebuild it.. though I don't know why it would have failed the first time :/ Let me know what version you need and I'll see if I can upload it here.
          roi.katz Roi Katz added a comment -

          yeah ok.
          I actually got this issue from a prospect, I will check with him and get back to you.

          roi.katz Roi Katz added a comment - yeah ok. I actually got this issue from a prospect, I will check with him and get back to you.
          mnunberg Mark Nunberg (Inactive) added a comment - - edited

          Is this still an issue? I'm assigning this back, as I would imagine that whoever actually got the bug would be able to send the proper diagnostic information to Microsoft.

          If thye are a Microsoft enterprise customer, they might get more information via https://www.microsoft.com/en-us/security/portal/submission/submit.aspx. As it stands, I can submit the file independently, but only hope to wait and see that they actually look at it.

          FWIW:

          https://www.microsoft.com/en-us/security/portal/submission/SubmissionHistory.aspx?SubmissionId=0b8be99e-257b-4fee-8214-85a588c5ec0c

          mnunberg Mark Nunberg (Inactive) added a comment - - edited Is this still an issue? I'm assigning this back, as I would imagine that whoever actually got the bug would be able to send the proper diagnostic information to Microsoft. If thye are a Microsoft enterprise customer, they might get more information via https://www.microsoft.com/en-us/security/portal/submission/submit.aspx . As it stands, I can submit the file independently, but only hope to wait and see that they actually look at it. FWIW: https://www.microsoft.com/en-us/security/portal/submission/SubmissionHistory.aspx?SubmissionId=0b8be99e-257b-4fee-8214-85a588c5ec0c
          mnunberg Mark Nunberg (Inactive) added a comment -

          I'm closing this as 'Cannot Reproduce'. For some reason I can't assign the bug back to you, but included is a link showing that MS itself doesn't detect a virus/malware etc.

          I tried both a locally built version of the file, and one I downloaded directly from PyPi

          mnunberg Mark Nunberg (Inactive) added a comment - I'm closing this as 'Cannot Reproduce'. For some reason I can't assign the bug back to you, but included is a link showing that MS itself doesn't detect a virus/malware etc. I tried both a locally built version of the file, and one I downloaded directly from PyPi

          People

            mnunberg Mark Nunberg (Inactive)
            roi.katz Roi Katz
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Gerrit Reviews

                There are no open Gerrit changes

                PagerDuty