Yeah that would make sense. Although, this page of the hybrid-analysis platform shows the IPs and ports accessed. 3 of those seem to be suspicious and 1 flagged as malicious. - Free Automated Malware Analysis Service - powered by Falcon Sandbox - Viewing online file analysis results for 'https://github.com/darktable-org/darktable/releases/download/release-4.0.0/darktable-4.0.0-win64.exe'
I’m far from being an expert. I just got the habit of verifying executables before installing. In this case, it got flagged and I just wanted to let the devs/community know that that is the case. Be it false positives or actually malicious stuff, I think the team/devs especially should be aware. I don’t assume is their fault either way.