Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Virus alert #778

Open
risharde opened this issue Feb 1, 2025 · 6 comments
Open

Virus alert #778

risharde opened this issue Feb 1, 2025 · 6 comments
Labels
bug

Comments

@risharde
Copy link

risharde commented Feb 1, 2025

Describe the bug
Compiling my Android app with the following directives results in an APK that is detected as a trojan

To Reproduce

// Adding the following to build.gradle.kts will pull these libraries in, compile and output an APK that is detected as a trojan
implementation("io.socket:socket.io-client:2.1.1")
implementation("com.squareup.okhttp3:okhttp:4.12.0")


**Expected behavior**
Well I guess we shouldn't be getting this warning - I'm not exactly sure how this can be dealt with third party AVs
and perhaps also ensure a virus really isn't lurking in the above repos?
@risharde risharde added the bug label Feb 1, 2025
@risharde
Copy link
Author

risharde commented Feb 2, 2025

@darrachequesne

@risharde
Copy link
Author

Hmmm interesting there's been no response
Imagine if the repo does indeed have a virus in it how many people are using the library and have it out in the wild

@risharde
Copy link
Author

@Harsh5488

@darrachequesne
Copy link
Member

Hi! Sorry for the delay.

Which system detects the trojan? When uploading your app to the store? Does the warning comes from this library, or from OkHttp?

@risharde
Copy link
Author

Hi @darrachequesne , glad to hear from you, that's the part I can't really tell off hand - I've avoided adding the libraries back since I'm working on a live app but it's those 2 since socketio requires the okttp according to what I saw on the socket io instructions. Apologies for not being able to compile either one to determine which it is - if you have time to explore, would appreciate it

When I build the apk, I tested it by uploading it to virustotal - actually this was originally discovered by a user who used the app and accused me of being a scammer due to the virus warning - can't say I blame him for thinking that after seeing the virustotal results - I was alarmed + surprised!

@risharde
Copy link
Author

@darrachequesne thanks for your patience, I got a chance to compile the app and virus total detects the issue even when socket.io is not included - so it's the implementation("com.squareup.okhttp3:okhttp:4.12.0") dependency which is causing the virus alert - I guess this is still a problem for socket.io since it depends on the library?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@darrachequesne @risharde