I install and update Anki with chocolatey which is setup to do virus checks on everything. By default, a program has to fail 4 tests before it refuses to install. Anki has been failing 4 tests for versions 2.1.33 and 2.1.35. (These are the last two versions the package maintainer has added.)
I know this is likely due to a security vulnerability, not that there’s a actual virus there. But it doesn’t make sense to change chocolatey false positive minimums, or to skip the virus check just for Anki.
This more seems like something that should be patched for the sake of best practice.
Screenshot below and here is the VirusTotal link referenced:
Referring to a FAQ that just says, ‘not a problem.’ Does not mean not a problem. Of 108 packages, Anki is the only one throwing a single issue consistently. I’ve only seen one other flag on Deno and the next release that came a day after cleaned it up.
If the decision is to ignore everything as always false positive without ever stopping to think if something needs to be cleaned up, then there’s nothing I can do about that. Freeware is freeware.
I’ll leave it up to you to figure out what Riskware is.