Security Scan False Positives

In cybersecurity, a false positive is a test result that is incorrectly classified as positive.

Black Duck SCA is security software that falsely claims a vulnerability that relates to WinSCP in ToolsTalk 2. ToolsTalk 2 uses the WinSCP .NET Assembly (licensed under MPL) to interact with the WinSCP executable (licensed under GPL). Because ToolsTalk 2 accesses the WinSCP executable through its public scripting interface and not as a library, ToolsTalk 2 itself is not required to be licensed under GPL.

ToolsTalk 2 | 2.25

Published: 2025-05-20

© 2025 Atlas Copco Industrial Technique AB | Legal Notice