Bug: The `.APK` is considered to be "harmful" by GMS.

[RokeJulianLockhart]

Is there an existing issue for this?

• [X] I have searched the existing issues

Current Behavior

When I attempt to install fdroid/repo/sw-v2.1.9-arm64-v8a-release.apk:

...com.android.vending/com.google.android.finsky.protectdialogs.activity.PlayProtectDialogsActivity appears:

Expected Behavior

This shouldn't appear. I've never had it appear for any other application.

Reproduce Steps

https://github.com/user-attachments/assets/d2fe6955-6689-436e-a3b1-8b9202ff72b2

Environment

• Device platform and version:

  Fairphone 5: ^2

  1. #!/usr/bin/env -S bash
     adb shell getprop
     

  2. [ro.build.product]: [FP5]
     

• Operating system and version:

  The OEM distribution of AOSP 14: ^1

  1. #!/usr/bin/env -S bash
     adb shell getprop
     

  2. [ro.build.version.release]: [14]
     [ro.build.display.id]: [FP5.UT2E.B.078.20241105]
     

• Real device or emulator/simulator:

  Real

[lasermind]

Can confirm, this behaviour is also new in StackDuo version 1.2.4. Did not happen with version 1.2.3.

Google Play Protect wants to scan this app and asks to send it to them.

[sneurlax]

This is a result of bundling Monero into Stack Wallet because virus scanners detect Monero mining code as potentially harmful due to its frequent association with malware. This issue cannot be resolved until (/if) we migrate to another Monero codebase, and even then only until (/unless) malware-scanning services update their scans to target the newer codebase(s), too.

[RokeJulianLockhart]

#issuecomment-2568215550

@sneurlax, consequently, should I close this as unplanned? Irrespective, perhaps the download documentation should explicitly and prominently state your aforementioned?

[rehrar]

We have done a fair amount of work in the past couple of months that should reduce this happening. We will ping you all after this next release and ask if it solves the problem.