After my previous posting, I saw the news item “below the fold” of ROOT’s main page (https://root.cern.ch/blog/false-positives/), notice the URL. I’m not getting Google complaints from the classic root.cern.ch hostname, only from the new root.cern.
Would a possible workaround, until Google and the virus-scan vendors resolve the false positive, be to stop redirecting from root.cern.ch to root.cern? Or would that just end up (eventually) having Google flag root.cern.ch as well?