If a component of SB resembles a fragment already classified by WD as a viral sample, then SB is flagged as harmful. For this reason, WD has a high false-positive rate, yet this same mechanism renders it exceptionally secure. Truly novel viruses — such as SARS-CoV-2 — are exceedingly rare; most share certain segments with known viruses, and WD excels at identifying these shared elements.
I have used WD since childhood, yet I also disabled WD from an early age. After all, if someone genuinely intended to compromise my system, I would likely be unable to evade it — and minor malware would hardly pose any real threat to me, would it?
A practical solution is to designate a whitelist directory so that WD bypasses it during scanning, for example by assigning SB’s working directory to this list.