trojan virus found in folder?
It seems like this might be a false positive with the compressed archive specifically. From searching, it seems like it's not uncommon. The !ml at the end means the detection is based on machine learning.
Windows Defender stops caring after it's unzipped, so the developer will probably just have to rebuild it or use another type of archive and then reupload to get it to stop throwing the false positive.
VirusTotal reports no issues with the archive or the executable.