-
Notifications
You must be signed in to change notification settings - Fork 26.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Windows] Default MaterialApp project built with /MT compilation flag is detected by antiviruses #95167
Comments
My proposal is so that someone from Flutter team officially(from @flutter.dev/google email address) contacts these antivirus companies with request to update their scan engines for such cases when an empty app is already considered as a virus just because of inherited vc++ libraries. Not every developer can sign his code with expensive code signing certificate to make his app more friendly for antiviruses and for ordinary user who decides whether to use your app or not there's no matter how many antiviruses scan this file as a thereat: 1, 2 or 60, it becomes not trustable in a same way. |
@timsneath Is this something the project wants to follow up on?
Can you elaborate on why? If this is reproducible with the example app then you can provide an example that the companies can compile from source, and thus validate themselves. That's a much, much stronger safety guarantee than the domain that the email is sent from, so it's not clear to me what the advantage of your proposal is over developers such as yourself simply contacting them directly to report the false positive. |
I think is about relation of companies to your request. If they see that it's just some random guy writing them, they are not really motivated to install flutter, compile some source, test the outcomes, rewrite their analyzer engine, but when they see that request is official from the language developers, that it's not a problem of just one man, they are much more likely to conduct a more detailed analysis of the problem and cooperate in its solution. That's difficult to persuade the company to spend so much time doing such things. For example, if this issue was created not by me but by some huge company(maybe by one from Flutter showcase) (what won't happen because they do have resources for code signing certificates and hundreds of good specialists). i guess you(as a flutter team) would be more interested in the situation's resolving, just my opinion). I've already tried to contact some antivirus companies manually and all i achieved is removing false detections from a single file by it's md5 hash, so this is applicable only to one specific application and i have to contact them again and again after each build of the app what makes it an endless groundhog loop |
Hi @kirill-21, thanks for filing the issue. I am able to reproduce the same behavior with the MT flags enabled virustotal detects app as malicious. Leaving this issue open for further insights from the team. flutter doctor -v
|
I've filed a report with both companies that are reporting false positives. I can't guarantee any response, obviously -- I fear you're giving us more credit in terms of our leverage with these niche companies than we deserve! But hopefully it will have some impact... |
@timsneath it seams that your report to Ikarus antivirus team has helped previous time, can do you the same for antiviruses above? |
The people who can do something are the authors of the antivirus software. We don't control their heuristics, or have the ability to require them to change them. |
But what should a developer do? There is no way to fix it manually and people who might download our apps won't do it just because of this problem. I've tried to write antivirus teams but they remove detection only for single executable and whenever you make a tiny change you have to contact them again and again |
Based on your initial report, you could avoid this from your side simply by using Microsoft's recommended approach of shipping the necessary redistributables with your applicaiton, instead of linking the runtime into your application (and each of your plugins, if any). |
But even without /MT mode apps built with Flutter 3.0 are detected by antivirus(list of antiviruses becomes smaller but it's still a problem). Of course you still can ship the app via Microsoft Store but that is the lose of Win7+Win8 users |
The |
Code of the app:
Steps to reproduce:
Result with /MT flag:
![image](https://user-images.githubusercontent.com/63228361/145819326-514a50f6-8631-453e-8d7b-bc0b01a5ca34.png)
Result without /MT flag:
![image](https://user-images.githubusercontent.com/63228361/145819564-12984e56-4052-41b2-abd0-a4a029d19823.png)
Flutter version: 2.8.0 from the stable channel
The text was updated successfully, but these errors were encountered: