Comments (2)
mkoertgen
commented on June 12, 2024
Hi @druizgui,
Thanks for reporting. I did a quick review on the generic trojan. There are some users reporting false positives of BitDefender on this particular signatures.
Since this is the first reported issue of this kind we don't want to brush this off. Let's discuss:
- The library loads fonts from embedded resources at runtime. For WinForms it uses PrivateFontCollection.AddMemoryFont(IntPtr, Int32). This might trigger the AntiVirus software (BitDefender i guess)
- The NuGet package might in fact be infected by 3rd party hackers. Since the package is built on AppVeyor this is improbable but not impossible.
- The package could be hacked during download. Do you use proxies?
For your convenience i manually downloaded the package directly from nuget.org/packages/FontAwesome.Sharp and checked it online on VirusTotal.
Here is the report:
No engine detected this file. My bet is that your AntiVirus software is producing a false positive. But please review yourself.
from fontawesome.sharp.
druizgui
commented on June 12, 2024
My antivirus is BitDefender. I don't use intermediate mechanisms to connect (proxy, WIFI,...). I have checked the latest version and 5.12.1 in the nuget repository and I am surprised that the last one does not report viruses but yes the previous.
from fontawesome.sharp.
Related Issues (20)
- FontAwesome.Sharp package (v5.15.4.0) is unsigned HOT 1
- Add example for nerdfonts
- Add Support for .NET 7, C# 11
- Evaluate https://thenounproject.com/icons/
- Update NuGet Package to 6.2.1 HOT 3
- CVE-2022-34716 (Medium) detected in system.security.cryptography.xml.4.7.0.nupkg
- WS-2022-0161 (High) detected in newtonsoft.json.12.0.3.nupkg, nuke.common.6.1.1.nupkg
- Generate FontAwesome.Sharp.dll for FA Pro? HOT 13
- Image and text are not horizontal aligned. HOT 1
- Update NuGet package FontAwesome.Sharp.Pro HOT 2
- Update NuGet package FontAwesome.Sharp.Pro HOT 6
- CVE-2022-26907 (Medium) detected in microsoft.rest.clientruntime.2.3.20.nupkg, nuke.common.6.1.1.nupkg
- CVE-2023-29337 (High) detected in nuget.common.5.11.0.nupkg, nuke.common.6.1.1.nupkg
- CVE-2024-21907 (High) detected in newtonsoft.json.12.0.3.nupkg, nuke.common.6.1.1.nupkg
- System.ArgumentException: '' is not a valid value for property 'FontFamily' HOT 7
- Font Awesome Sharp Pro DuoToneIcons Support HOT 1
- Support / Add example for Open Iconic HOT 1
- Duplicate IconChar entries in property window. HOT 8
- Button content not properly aligned. HOT 6
- How to use with Awesome Pro? HOT 8
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from fontawesome.sharp.