Any user who experiences/suspects a false positive (or negative) can certainly alert their antivirus provider, and I recommend doing so.
That said, it's always up to the antivirus provider to determine the course of action, and sometimes, but not always, a given provider chooses not to make changes. > On 01/20/2026 4:30 PM PST MegaBrutal <[email protected]> wrote: > > > Please know that most antivirus software has a portal where you can > send in executables for deeper analysis. Usually when you send in your > software builds on it, they'll find that your software is not a virus > and update their definition files to whitelist your executable as > known non-malware. Not GnuCash, but I'm developing a health check tool > for a certain type of Linux appliance. Sometimes I need to drag it > through Windows machines which tend to have an antivirus and sometimes > they block my software: as it goes through deep system settings, run > DB queries and the likes, heuristics may understandably flag it > suspicious. To avoid this, I learned to proactively upload my release > builds to VirusTotal to see which AV engines flag it: usually it turns > out to be Microsoft and sometimes Norton I think. Then I go to their > respective malware analysis submission forms and upload my executable. > Soon they send an e-mail confirmation that they found my program not > to be a malware and update their virus definition files globally so > that I won't be annoyed by false positive detections. I suggest the > same strategy for GnuCash builds. > _______________________________________________ _______________________________________________ gnucash-user mailing list [email protected] To update your subscription preferences or to unsubscribe: https://lists.gnucash.org/mailman/listinfo/gnucash-user ----- Please remember to CC this list on all your replies. You can do this by using Reply-To-List or Reply-All.
