Possible Malware in Symfony payment module?

Hello,
after some security breaches, our hosting provider made a scan of our web site using the Watchful.li maintenance dashboard.
Among other small issues found on our configuration which were fixed immediately, a file has been tagged as "possibly infected" (Possible PHP Injection (Unix command)).

This file is part of the Events Booking installation package and belongs to the Symfony (Omnipay) vendor module:
/libraries/omnipay/vendor/symfony/http-foundation/File/MimeType/FileBinaryMimeTypeGuesser.php

The suspect code is on line 71: (omitted because your site blocked the content)

The scan was made on Events Booking 3.0.2, which now has been updated to 3.1.1.
A comparison with the newly installed file shows no differences (code still present).

Is this code to be considered safe (i.e. a false positive)?

Thanks a lot in advance for your support and congrats for such a great product!

Kind Regards,
Daniele Candeago

Hello Daniele

It is just a false positive. I just checked and see that the code is OK. Please note that that part of code is from a very popular, widely used PHP library symfony.com , so you don't have to worry about it

Regards,

Tuan

Hello Tuan,
thanks a lot for your quick reply!
That's perfect, so no use to worry about this code.

Thanks again!
Daniele