Oops! That’s the mpdf/patterns directory
Has this question been addressed? What security program is flagging the files?
I’m using Anti-Malware Security and Brute-Force Firewall plugin by Eli Scheetz, which has been extremely useful flagging and removing malware and threats. I really want to use Gravity PDF but I can not risk taking any chances.
Hi! I scanned a dev site with the plugin installed using Wordfence and Sucuri, and individual files with Kaspersky. All three malware tools said this plugin was clean and free of malware.
Can you double-check with Eli Scheetz to verify what you’re seeing is a false positive? Security programs spit out false positives all the time. Or, it could be that your site or client is infected. Can you please identify the names/locations of the files you’re saying are infected? I’d like to do further research on my side as well.
Thanks! Peter
Can you please identify the names/locations of the files you’re saying are infected
We’ll need this information to investigate further. It would also help if there was any indication exactly why these files were flagged as malware. Thanks!
GravityPDF files flagged by Anti-Malware from GOTMLS.NET
Thanks for the additional information.
These are false positives. Those files are used to help auto-hyphenate different languages. Since Mpdf supports UTF-8 there’s a lot of unicode patterns which are likely being picked up by the scanner. I’ll get in touch with the author and see if we cannot resolve this issue.
Thank you for clarifying. I look forward to using GravityPDF. Cheers!
Not a problem.
If you would like to keep apprised of our communication with the GOTMLS.NET authors please follow this topic.
Avast also flagging same issue.
Update from Avast they had a false positive issue that was fixed at 3am this morning. No longer seeing the same warnings. So maybe fine.
@blue-liquid-designs
this is great news! Thanks for clearing this up!
– Peter
Just an update, the author of the security plugin has released a fix for this false positive.
