-
Just curios why 2 vendors show alerts for install.sh file |
Beta Was this translation helpful? Give feedback.
Replies: 2 comments 4 replies
-
Because they’re crap? what vendors? What did they flag? Did they give any other info? without details, this is useless. |
Beta Was this translation helpful? Give feedback.
-
The current analysis for the install.sh URL shows only 1 currently, as I rerun the analysis. The previous results were from an analysis from 2022. In any case, these results are false positives, as there is no possible malware coming from a url that serves a plain text file. The proper analysis should be done on the actual script file, which you can find here. You'll see that 0 positives are returned. You can also inspect the install.sh, which is very straightforward, it only runs git and sets up zsh. Let me know if you have any other doubts, and thanks for reporting this. |
Beta Was this translation helpful? Give feedback.
The current analysis for the install.sh URL shows only 1 currently, as I rerun the analysis. The previous results were from an analysis from 2022.
In any case, these results are false positives, as there is no possible malware coming from a url that serves a plain text file.
The proper analysis should be done on the actual script file, which you can find here. You'll see that 0 positives are returned.
You can also inspect the install.sh, which is very straightforward, it only runs git and sets up zsh.
Let me know if you have any other doubts, and thanks for reporting this.