Spacy: Virus alert for english model (en_core_web_sm-2.0.0)
How to reproduce the behaviour
strings.json in 'en_core_web_sm-2.0.0/en_core_web_sm/en_core_web_sm-2.0.0/vocab' triggers an alert with avast (JS:Downloader-FPP [Trj]).
I guess some part of the json (like certains urls e.g. http://www.al-jazirah.com.sa/cars/29112006/rood55.htm" or words) triggers the antivirus.
Your Environment
- Platform: Windows-10-10.0.17134-SP0
- spaCy version: 2.0.16
- Python version: 3.5.4
emily-d
All 4 comments
Thanks for sharing this – I've been wondering what was going on! I suspect this must have been a recent addition, like a new exploit being discovered that used a strings.json or included some of the strings, because it only started coming up the other day. (A user reported that the model would only install without strings.json and turning off their antivirus helped. We also received a separate email with a similar report.)
Not sure what we should do about this 🤔
ines
on 8 Nov 2018
I've reported it as a false positive. Hopefully its just a minor fix - on their part.
emily-d
on 8 Nov 2018
Good news, bad news.
The good news is that Avast no longer flags the file as a malware. The bad news is that now Qihoo-360, a Chinese security firm, does.
False positive report sent.
yacine-harbi
on 22 Nov 2018
This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.
![lock[bot] picture](https://avatars1.githubusercontent.com/in/6672?v=4&s=40)
lock[bot]
on 20 Mar 2019
Related issues
armsp
·
3Comments
peterroelants
·
3Comments
cverluise
·
3Comments
ahalterman
·
3Comments
tonywangcn
·
3Comments
Most helpful comment
Good news, bad news.
The good news is that Avast no longer flags the file as a malware. The bad news is that now Qihoo-360, a Chinese security firm, does.
False positive report sent.