Scans now actually prevent running of code

IPA.Injector/Updates.cs

@@ -1,4 +1,7 @@
-using IPA.Utilities;
+#nullable enable
+using IPA.AntiMalware;
+using IPA.Config;
+using IPA.Utilities;
 using System;
 using System.Collections.Generic;
 using System.Diagnostics;
@@ -31,6 +34,18 @@ namespace IPA.Injector
             var path = Path.Combine(UnityGame.InstallPath, "IPA.exe");
             if (!File.Exists(path)) return;
 
+            var scanResult = AntiMalwareEngine.Engine.ScanFile(new FileInfo(path));
+            if (scanResult == ScanResult.Detected)
+            {
+                updater.Error("Scan of BSIPA installer found malware; not updating");
+                return;
+            }
+            if (!SelfConfig.AntiMalware_.RunPartialThreatCode_ && scanResult is not ScanResult.KnownSafe and not ScanResult.NotDetected)
+            {
+                updater.Error("Scan of BSIPA installer returned partial threat; not updating. To allow this, enable AntiMalware.RunPartialThreatCode in the config.");
+                return;
+            }
+
             var ipaVersion = new Version(FileVersionInfo.GetVersionInfo(path).FileVersion);
             var selfVersion = Assembly.GetExecutingAssembly().GetName().Version;
 

IPA.Loader/Config/SelfConfig.cs

@@ -160,9 +160,9 @@ namespace IPA.Config
             // LINE: ignore
             public static bool UseIfAvailable_ => Instance?.AntiMalware?.UseIfAvailable ?? true;
 
-            public virtual bool LoadPartialThreatPlugins { get; set; } = false;
+            public virtual bool RunPartialThreatCode { get; set; } = false;
             // LINE: ignore
-            public static bool LoadPartialThreatPlugins_ => Instance?.AntiMalware?.LoadPartialThreatPlugins ?? true;
+            public static bool RunPartialThreatCode_ => Instance?.AntiMalware?.RunPartialThreatCode ?? true;
         }
 
         // LINE: ignore

IPA.Loader/Loader/PluginLoader.cs

@@ -142,10 +142,19 @@ namespace IPA.Loader
 
                 try
                 {
-                    Logger.loader.Debug($"Scanning {plugin}");
-                    AntiMalwareEngine.Engine.ScanFile(new FileInfo(plugin));
+                    var scanResult = AntiMalwareEngine.Engine.ScanFile(metadata.File);
+                    if (scanResult is ScanResult.Detected)
+                    {
+                        Logger.loader.Warn($"Scan of {plugin} found malware; not loading");
+                        continue;
+                    }
+                    if (!SelfConfig.AntiMalware_.RunPartialThreatCode_ && scanResult is not ScanResult.KnownSafe and not ScanResult.NotDetected)
+                    {
+                        Logger.loader.Warn($"Scan of {plugin} found partial threat; not loading. To load this, set AntiMalware.RunPartialThreatCode in the config.");
+                        continue;
+                    }
 
-                    var pluginModule = AssemblyDefinition.ReadAssembly(plugin, new ReaderParameters
+                    var pluginModule = AssemblyDefinition.ReadAssembly(metadata.File.FullName, new ReaderParameters
                     {
                         ReadingMode = ReadingMode.Immediate,
                         ReadWrite = false,