cm0002@europe.pub to Linux@programming.dev · 2 days agoArch Linux AUR Hit By Another Wave Of Now More Sophisticated Malware Attackwww.phoronix.comexternal-linkmessage-square22linkfedilinkarrow-up1128arrow-down12cross-posted to: libre@hexbear.netarchlinux@lemmy.ml
arrow-up1126arrow-down1external-linkArch Linux AUR Hit By Another Wave Of Now More Sophisticated Malware Attackwww.phoronix.comcm0002@europe.pub to Linux@programming.dev · 2 days agomessage-square22linkfedilinkcross-posted to: libre@hexbear.netarchlinux@lemmy.ml
minus-squarecaseyweederman@lemmy.calinkfedilinkarrow-up4·1 day agoIt’s the USER repositories. If you go, right now, to aur.archlinux.org, the very first section on the page after the header says DISCLAIMER: AUR packages are user produced content. Any use of the provided files is at your own risk. That’s always been there and every official messaging I’ve ever seen about the AUR has conformed. Read the changelogs because everything in the AUR is just a shell script some stranger wrote.
It’s the USER repositories. If you go, right now, to aur.archlinux.org, the very first section on the page after the header says
DISCLAIMER: AUR packages are user produced content. Any use of the provided files is at your own risk.
That’s always been there and every official messaging I’ve ever seen about the AUR has conformed. Read the changelogs because everything in the AUR is just a shell script some stranger wrote.