keytar.node reported ass Win32/Trojan?

[HighTide1]

Hello everyone. I've just recently tried to get atom-windows,zip to extract and install successfully, but I keep getting Windows Defender detecting keytar.node as a trojan, along with several other antivirus scanners (to see an example, upload keytar.node to VirusTotal). As I got atom-windows.zip directly from the GitHub release, either I'm getting a false positive, or there's a second CCleaner going on here. Should I just report this to Microsoft (and several antivirus vendors) as a false positive? Or can someone else confirm this?

[dweremeichik]

Duplicate of #75

[HighTide1]

I saw #75 when I was looking. Is there any way I can really be sure, though? If only Windows Defender reported it, I would think it a false positive, but I've gotten several different antivirus software to report it as a Trojan, Ransomware, and all sorts of other bad-things. I also sort of need to prove to a friend that I didn't infect their machine the first time I used it.

[50Wliu]

@HighTide1 Atom's Windows releases come directly from AppVeyor, so if you wanted to, you could try downloading atom-windows.zip directly from the artifacts page: https://ci.appveyor.com/project/Atom/atom/build/8296/job/3xpxa8h2foy92m9f/artifacts (that one is on the 1.20-releases branch, so it should be pretty stable). And since Atom's build scripts (as well as keytar!) are all open-source, you can verify that nothing suspicious is going on behind the scenes.

It's also important to note that AV vendors have marked other components of Atom as suspicious in the past, and the quickest way to resolve it is by reporting it as a false positive.