Running the detector on 'sanctus.io' gives a fuzzy match against the whitelisted domain 'auctus.org'. That's pretty odd, and clearly is a false positive. I guess it's better safe than sorry, but there should be an error message on that page that says something like "We think this site is pretending to be auctus.org, if you think this is a false positive than click here to continue".
Running the detector on 'sanctus.io' gives a fuzzy match against the whitelisted domain 'auctus.org'. That's pretty odd, and clearly is a false positive. I guess it's better safe than sorry, but there should be an error message on that page that says something like "We think this site is pretending to be auctus.org, if you think this is a false positive than click here to continue".