It can be reproduced by installing Windows Linux Subsystem (Ubuntu 18.04 in my case)
and install Miniconda (python 3.7.3 in my case)
And the false positive can be reproduced by installing either one of the two totally different python package from two totally different sources which excludes the possibility malware is planted in both packages
conda install -c conda-forge mpi4py
pip install git+https://gitlab.mpcdf.mpg.de/ift/nifty_gridder.git
I also have system trace enabled when I try to reproduce the false positive, not sure how can I submit it.