Skip to content

Fix #4795 - Update GnuPG icon and remove associated images#4796

Open
Aravind Nair (aravindvnair99) wants to merge 1 commit into
Devolutions:mainfrom
aravindvnair99:patch-1
Open

Fix #4795 - Update GnuPG icon and remove associated images#4796
Aravind Nair (aravindvnair99) wants to merge 1 commit into
Devolutions:mainfrom
aravindvnair99:patch-1

Conversation

@aravindvnair99
Copy link
Copy Markdown

@aravindvnair99 Aravind Nair (aravindvnair99) commented May 17, 2026

Fixes #4795

Summary

The gnupg entry in screenshot-database-v2.json referenced www.tech-faq.com, a domain that has been compromised and now serves malicious redirects through DGA infrastructure (confirmed by Cloudflare Radar).

Additionally, the screenshots were for "GnuPG Shell" (a separate, abandoned GUI frontend listed at gnupg.org/software/frontends.html), not the GnuPG CLI tool (GnuPG.GnuPG on winget) that this package ID represents. The winget package is a command-line tool with no GUI, so GUI screenshots are inappropriate.

Changes

  • Replaced icon URL with official GnuPG logo from gnupg.org
  • Set images to empty array (no legitimate screenshots exist for the CLI tool, and the old ones were for a different program)

Evidence

Cloudflare Radar scans confirming the malicious redirect chain from tech-faq.com:

DGA domain classified as malicious:

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

[BUG] Security: gnupg entry in screenshot-database-v2.json links to a compromised/malvertising domain

1 participant

@aravindvnair99