packages icon indicating copy to clipboard operation
packages copied to clipboard
verified publisher icon piwheels

Package issue: pip [wheel reported as threat or malicious]

Open jason-mid-work opened this issue 9 months ago • 2 comments

Package name

pip

Package version

25.0.1

PyPI URL

https://pypi.org/project/pip

piwheels URL

https://piwheels.org/project/pip

Python version

  • [x] Python 3.9
  • [x] Python 3.11

I am aware this is the issue tracker for a Python package index specifically for Raspberry Pi

  • [x] Yes

I have checked for duplicate issues

  • [x] Yes

I am the maintainer

  • [ ] Yes

More information

Our firewall vendor is flagging pip-25.0.1-py3-none-any.whl as Virus/Win32.WGeneric.eoixud

Image

jason-mid-work avatar Mar 28 '25 00:03 jason-mid-work

Full sha256 hash: 0f21c41aa2c99e313c5fc122629e279a8a607617a9ebcbc4fb15d9da6dce451a

jason-mid-work avatar Mar 28 '25 00:03 jason-mid-work

It seems unlikely that our build of this wheel would result in a virus being bundled with the wheel, and I assume that is a Windows virus identifier, so it wouldn't affect our users anyway.

The contents of the two files seem to be identical.

It's likely a false positive.

Can you provide any specific information about the threat?

bennuttall avatar Mar 28 '25 21:03 bennuttall