[Radar1968]

I've just had an alert from ClamXav saying that there is an issue with the latest v2.82.0 of Calibre. I am using macOS Sierra and the latest version and refs of ClamXav.

Exact alert is:
/Applications/calibre.app/Contents/Resources/resources/compiled_coffeescript.zip: Heuristics.Filetype.ZipWithJS-6136370-0 FOUND

Anyone have any idea why this has happened? Is it a false positive?

I have contacted ClamX re the issue but wondered if anyone was seeing similar with other scanners? I can't scan online as Calibre s 202mb.

Any help greatly appreciated.
Radar

UPDATE
I have heard back from ClamX and have they have following to add:
******************
Downloaded Calibre 2.82.0 and can confirm the detection.

The signature was just added by ClamAV yesterday in Daily - 23230 which would have shown up as a ClamXav update today and looks like this:

VIRUS NAME: Heuristics.Filetype.ZipWithJS-6136370-0
CONTAINER TYPE: CL_TYPE_ZIP
CONTAINER SIZE: ANY
FILENAME REGEX: \.[A-Za-z]{3}\.js$
COMPRESSED FILESIZE: ANY
UNCOMPRESSED FILESIZE: ANY
ENCRYPTION: IGNORED
FILE POSITION: 1
CRC SUM: ANY

So I would have to guess that it's not a false positive in that it is a zip file that contains javascript files, which is what it's designed to find. That doesn't mean there is anything wrong with doing that, just that it's suspicious to do so.
******************

This means that its possible that Calibre had this file before but the signatures weren't picking it up.
Be nice to know what the file is and that it is harmless and was there before