This is a REST-API that scans files with ClamAV an determines the MIME-Type of the file in the first place.
In order to scan a file with the clamavd daemon this app uses solita/clamav-client.
In case of application/zip it additionally checks if this could be a zip-bomb, since this ist not being detected as virus by ClamAV.
If it is configured like this, in all cases - unathorized clients, virus other vulterable threads a message is send both to a Telegram chat and a mail account.
Authorized client applications are allowed to use it. The clients are checked by their clientId (server to server).
There shoud be a clamav installation at the server as for instance mko-x/docker-clamav.