In that case, Scan Engine probably won't help either, right? Is there a way we can get an official confirmation on this? i.e., writing files onto a Windows directory with SEP auto protection on is safe and protected, automatically.
Otherwise, we have to either pass the file/stream through scan engine (very slow so far), or write them to a temp location, kick off a DoScan or something, then move to final destination. In the latter case, I could see the same file being scanned thrice. I'm trying avoid all the complexity and dependency, but I need some kind of authorative looking opinion to back me up