My virus program lets me know this is no good, and contains a virus:
Realtime scan result:
time: 10/01/15 10:06:15, virus found: W32/Eldorado.6D29!tr, action: Failed to quarantine, c:\downloads\octopusdeploy.hydra.3.0.10.268.nupkg.crdownload
I’m not sure what to tell you here. We haven’t had any other reports of a similar virus flag, and I haven’t been able to reproduce this with a virus scanner here. I’ve checked the file as much as I’m able to, and haven’t found anything wrong.
I’m fairly confident FortiClient may be identifying the file as a virus based on a heuristic check. The Hydra package contains an executable that will automatically install an MSI, optionally via a delayed Windows Scheduled Task. I can only guess that FortiClient interprets this as suspicious and has flagged it as such.
Whether you are happy to accept this scan as a false positive will be a decision for you and your security team, however I can say we’re confident there’s no risk in this file.
We think this is an excellent idea and sometime very soon the website will have the hashes available for all downloads.
I can’t link you to an issue because its not part of our public issues list … but sometimes soon it will just magically appear