Avast One detects thread on self-hosted Plausible script

[wichtounet]

Past Issues Searched

• I have searched open and closed issues to make sure that the bug has not yet been reported

Issue is a Bug Report

• This is a bug report and not a feature request, nor asking for self-hosted support

Using official Plausible Cloud hosting or self-hosting?

Self-hosting

Describe the bug

In the last few weeks, I got several emails from my readers indicating that Avast detects incidents on my blog. And in all occurrences, this is related to the script.js script from Plausible. I am using self-hosted on https://thepoorswiss.com

The alert is shown regularly any then any call to the subdomain (s.thepoorswiss.com) is then blocked. I don't care about the missing stats, but this will likely scare people away.

Is there anything I can do? Has anybody seen such issue?

Expected behavior

The expected behavior would be that the script is not flagged as malicious for my readers.

Screenshots

Environment

- OS: Windows
- Browser: Chrome
- Browser Version: Any, with Avast running

[ruslandoga]

👋 @wichtounet

I've moved this thread to discussions since it's unlikely to be an issue with the code.

[ruslandoga]

What's under "See details" on your screenshot? Right now it's difficult to tell what might be causing problems.

[wichtounet]

Unfortunately, the details are not very useful.

[povpie]

I suggest sending a false positive report here

[wichtounet]

They did not provide any detail, but they have cleared the warning. So, it may have nothing to do with Plausible. Thanks for the support 👍

[kpapamanos]

@wichtounet Did they answer to your report or they just fixed it in their database without notifying?
I had multiple user reports for several of our sites. I submitted a false positive report today and i am waiting for a response. 🤷🏻‍♂️

[wichtounet]

@kpapamanos They told me they fixed it in the database, without any further details, but at least they answered. But it came back after a few days. Now, it seems okay after three or four reports, but I am not sure it will last. The next time it happens, I will seriously consider dropping the analytics.

[lubomirblazekcz]

We had the same problem, we have sent a false positive report.

[LagClear]

I am receiving this issue along side other friends who self host plausible. I have emailed and sent in a whitelisting request and haven't gotten any response any suggestions?

[jwoertink]

My site is now getting this too. I'm currently telling all of my customers to go and report the false positive, but for new users visiting the site, we're seeing people get nervous since it says "Phishing". My guess is it was related to the outbound-link tracking, so we disabled that, but it didn't seem to fix it. Thankfully most our customers are on mobile and aren't affected 😅