Avast identifies Joplin infected with md:httprequest-inf [sups]?

Operating system

Windows

Joplin version

3.5.13

Desktop version info

Joplin 3.5.13 (prod, win32)

Device: win32, 13th Gen Intel(R) Core(TM) i9-13980HX
Client ID: 521e6ec3c52b4a488febe622dd714432
Sync Version: 3
Profile Version: 49
Keychain Supported: Yes
Alternative instance ID: -

Revision: 0c1511f

Backup: 1.5.1
Freehand Drawing: 4.2.0

What issue do you have?

Avast keeps identifying that Joplin is infected with md:httprequest-inf [sups] and quarantining the file. The constant pop-ups are annoying but the real question is this is really malware.

Hi,

I am a Joplin user and also a Long time Avast antivirus user.

I never seem to get any warnings about Joplin from Avast but whatever you're getting you should in all likelihood simply accept as false positive.

Extremely unlikely. Does / did the flagged markdown note contain an HTTP URL?

See this similar post.

and this one ...

I have had this 5 times since April 20. I just checked, the last md false positive indeed contains an HTTPS link to a commercial website which was perfectly legit the last time I checked. I have 5 md files in quarantine, all with the same file name, but a different name in config\joplin-desktop\tmp. I checked each of those 5 files and Avast each time extracted the same exact file; I don't know if Avast is stuck or if it has indeed detected 5 times the same file under different names and decided to store them all under the same name in quarantine.

BTW, I reported at least the 4 last false positives to Avast, but got no answer.