Windows Defender blocking Micromamba install when executing ./build-locally.py

[thomasphung]

Bug:

The following line of code will trigger a Windows Defender action preventing further execution:

staged-recipes/.scripts/run_win_build.bat

Line 36 in cb396af

certutil -urlcache -split -f "!MICROMAMBA_URL!" "!MICROMAMBA_EXE!"

Reproducible steps:

1. Be on a Windows 10 machine with Python installed but not have Micromamba installed

Edition Windows 10 Pro
Version 22H2
Installed on ‎12/‎7/‎2024
OS build 19045.5131
Experience Windows Feature Experience Pack 1000.19060.1000.0

2. Run python ./build-locally.py
3. Select 7 for win64
4. An "access denied" message will show up in terminal and Windows Defender alert pop-up will appear saying it detected "Trojan:Win32/Ceprolad.A"

CmdLine: C:\Windows\System32\certutil.exe -urlcache -split -f https://github.com/mamba-org/micromamba-releases/releases/download/1.5.10-0/micromamba-win-64 C:\Users\UserName\AppData\Local\Temp\micromamba-314\micromamba.exe

My workaround:

• Install Micromamba separately following it's docs (e.g. https://mamba.readthedocs.io/en/latest/installation/micromamba-installation.html)

[thomasphung]

@conda-forge-admin, please ping conda-forge/staged-recipes

[thomasphung]

Also want to note that my organization flagged this as a security incident and I had to go through security remediation process. So users should be wary when running the Windows build script on their work computers.