Microsoft Defender reports Java.Trojan.GenericGBA.31025 during SonarLint update

I received a message from Microsoft Defender after the upgrade of my IntellijIdea SonarLint plugin.
Java.Trojan.GenericGBA.31025 in sonarlint-intellij/plugins/sonar-cfamilly-plugin-

Is it a really issue ? Do you need other details ?


Hi @Didier_Broca - welcome to the community!

We were made aware of the issue yesterday by another user. After investigations by the our security team and the CFamily team, we don’t believe there is an issue with any version of the analyzer. We will submit a FP report to Microsoft, although based on past experience this can take several days to be processed.

However, MS Defender doesn’t complain about the newest version of the CFamily analyzer (v6.30), so we will release a new version of SonarLint for IntelliJ that embeds that version today.

Thanks for reporting this.

Hi @duncanp ,
Thank you for your quick answer.

Thank you for your work & for this product.

Hello @Didier_Broca,

The new version has just been released on the Marketplace. Could you update and check that the problem disappears ?

No more warning with installed.


Update: Microsoft Defender with “Security intelligence version: 1.357.42.0” no longer complains about sonar-cfamily-plugin-, nor do a range of other anti-virus providers: see VirusTotal

1 Like

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.