AI studio gets detected as a virus #54
Comments
|
Yes, unfortunately, this happens 🙁. It has also happened to me on a computer. If you compile the code on your computer yourself, everything is fine. The problem arises because the app is built through a GitHub pipeline and is not signed. We need an expensive EV code signing certificate. That would make the installer and the app trustworthy. As long as there are no supporters, we unfortunately have to deal with it. I hope that some company will donate around 1000 dollars per year, so we can get that certificate. As long as we do not have a certificate, we need to define an exception in the virus scanner. On a personal computer, this is not a problem. It becomes more difficult in a company where the virus scanners are centrally managed by an IT department. However, often you can also apply for an exception in such situations. As an interim solution, I have published the results of various virus scanners on the release page to gain trust. The app is checked by 74 virus scanners with each release. The assumption is: If something were really wrong, many of the 74 scanners would have to raise an alarm. Currently, however, only 2 out of 74 scanners say that something is wrong. And they are little-known scanners In theory, there is another solution that I would like to briefly explain: We could publish AI Studio in the Microsoft and Apple App Store. This way we would get the certificate for free (or 99 dollars for Apple). Then we can extract the certificate and also use it for the GitHub releases. At the moment, however, it seems like too much effort to configure all this. Because: the app would have to be uploaded from GitHub to the App Store automatically with each release. This is all possible, but it is a lot of initial effort. |
|
@SommerEngineering I have installed similar non-licensed LLM UI apps before and received warnings from Kaspersky. However, I was able to allow them and use the apps without issues. In the case of your AI-Studio app, it is automatically deleting files, including the downloaded .exe file. This seems to be more than just a licensing problem; there may be some bugs involved. I'm not certain about the exact issue, but I received a high threat alert for your app from the entire list of apps provided below.
Please look into this matter and resolve the problem. |
Both Bkav & Deep Instinct use AI to "detect" malware and end up flagging more false positives than they do actual malware. This explains in detail why heuristic analysis tools are being set off incase it helps you work this out: Kaspersky uses heuristic analysis on device which is probabaly what is falsely flagging it as malware (like the above links). You can see that in the behaviour tab of VirusTotal none of the sandboxes that have actually ran the file flag it as malicious I'm not versed in how exes' work exactly but there may be a less "suspicous" way of interacting with webview? |
|
Currently, I see no way to solve the issue in the short term. Let's look at the details of the malicious indicators (thanks @sais-github for the link):
Some of these issues might improve with future updates of the Tauri framework. For example, if Tauri allows a different form of inter-process communication or by preventing standard browser queries, etc. However, we can't change anything in the short term, at least I would not know how. The problem is known in the Tauri world and is being observed there. |
SommerEngineering
changed the title
|
Today I also got a warning for the new version: https://www.virustotal.com/gui/file/70e9c112be239e7344617702af912723105e5a3cf852bfe22ffa6f9f6d96af15/detection |
Kaspersky detected AI studio as a virus, deleted it completely 0.8.3 , 0.8.4 versions.
The text was updated successfully, but these errors were encountered: