ParisNeo
it is getting detected as trojan in mcafee
Hi. Can you be specific? Do you mean the zip file from the release? In what file does it detect this threat?
lollms uses vue.js with multiple libraries and as of now, I have no known vulenerabilities in the code. In node.js, I can run an audit to review any known vulenerabilities in the libraries and so far, I find none:
It may be a false positive. Many antiviruses may mistakenly flag unsigned software as suspect. Can you be more specific with it? Lollms itself is 100% open source and you can read through the code.
You can also try the installation using the .bat installer script. this wil ldownload stuff bit by bit instead of having the whole .zip file. If Mc afee detects the threat, it should give you a file name where this is detected and you can report that here so that I can track it and delete it or change the library I use.
If it passes, then it is probably a false positive.
Thanks for bringing this forwards.
Sure when i try to download the zip file llolms-webui-main.zip Mcafee detects it as a virus threat. Trojan:Script/JSdropper.VS!3
I am not downloading using git clone.
well I tested with multiple antiviruses. Indeed some of them do detect trojans with different names, but it looks like a false positive. It looks like it is linked to the use of innosetup. on reddit they all have the same problem. Some antiviruses detect this false positive.
Maybe I'll stick with a traditional installation so that the users can install without the antivirus . easy way is to use the .bat installer for windows.