WPMU Defender and false positives

I'm using WPMU Defender on a couple of my sites and after running a scan, I'm getting a report of a suspicious file being found.

The file path is:
/wp-content/plugins/mainwp-child/class/class-tar-archiver.php and relates to the WPMain and wpchild plugin, which allows a site admin to back up and access multiple wordpress sites.

I have been in touch with the wpmain developer and they have logged in to my sites and double-checked the installations and assure me that the Defender report is a false positive.

Presumably this happens with a number of other plugins too, but just wanted to flag it - is it something the plugin developer addresses, or is it something that wpmu needs to consider?