Contribute Whitelist Rules

While the malware scan rules are quite precise they will sometimes pick up legitimate coding projects. Typically these false positives are due to code that is obfuscated in the same way hackers oftern use. To submit a file that is getting a false positive fill out the form below for each file.


The name of the developer or application the file belongs to.

The application version.

Relative file path.

Expected filesize in bytes

File hash for whitelisting. To get a hash run sha1sum from the command line.

The reason why this file needs to be whitelisted. Please include the rule name that was picking this file up.

Follow us on twitter @mage_sec for the latest Magento security news. Contribute to the magesec.org website on github magesec/magesec.