For a couple of days now windows defender keeps flagging JackettUpdater.dll as a Trojan. Similarly, a lot of detection tools on Virustotal flag it as malicious. I’m not experienced enough to look at the code myself, so asking people here. Jackett developers reassure that it’s a false positive.
I’m not a windows user and haven’t used jackett.
This is the relevant issue on github: https://github.com/Jackett/Jackett/issues/16352
The TLDR is, it’s a false positive.
The change they think triggered it is that there’s an “if” statement to detect the operating system and if so it moves some files.
They’ve submitted the file to some antivirus vendors so they can improve their false positive detection system. I wouldn’t expect a result on that front but who knows.
Nothing is a surety in life but:
- there’s a lot of transparency around this issue
- lots of people have reviewed the code regarding this specific issue
- it’s a long standing project with good community support and no recent shady changes to maintainers
- false positives do happen
You need to make your own decision but IMO, “very low” risk.