I guess antivirus companies are not very friendly with open source programs. And they see every server as a potential risk, and even more if it's open source, since anyone can build your own copy. If you can sign your .exe easily, go ahead, since you will gain the trust from Antivirus companies, and they can't come with that 'variant' excuse anymore. But like I've said, I don't see the point to be worried for just 2 or 3 false positives.
i recommend ditalg signing, but that won't stop AV from detecting it as a "virus / risk ware" ... i know many site and bad programs that are digitaly signed, but they are still bad progrmas and scammers... digtal signing just means you took the time to give the program your "contact" information...
in the long run it not necsay....