Virual@lemmy.dbzer0.com to Linux@lemmy.mlEnglish · 1 month agoArch Linux's AUR Sees More Than 400 Packages Compromised With Malwarewww.phoronix.comexternal-linkmessage-square86fedilinkarrow-up1270arrow-down10cross-posted to: security@lemmy.mllinux@sopuli.xyzarchlinux@lemmy.ml
arrow-up1270arrow-down1external-linkArch Linux's AUR Sees More Than 400 Packages Compromised With Malwarewww.phoronix.comVirual@lemmy.dbzer0.com to Linux@lemmy.mlEnglish · 1 month agomessage-square86fedilinkcross-posted to: security@lemmy.mllinux@sopuli.xyzarchlinux@lemmy.ml
minus-squareJames@lemmy.calinkfedilinkarrow-up11·1 month agoThe AUR is basically just a shortcut for downloading random shit off GitHub. It gives un-experienced users a false sense of security.
minus-squaresoftotteep@pawb.sociallinkfedilinkEnglisharrow-up1·1 month agoThe false sense of security is actually caused by people saying the AUR is the easiest way to safely get all your packages, when in reality the AUR itself tells you to always review PKGBUILDs and to not blindly trust AUR packages.
minus-squareHaraldvonBlauzahn@feddit.orglinkfedilinkarrow-up1·edit-21 month ago The AUR is basically just a shortcut for downloading random shit off GitHub. It gives un-experienced users a false sense of security. As is “pip install” by the way.
The AUR is basically just a shortcut for downloading random shit off GitHub.
It gives un-experienced users a false sense of security.
The false sense of security is actually caused by people saying the AUR is the easiest way to safely get all your packages, when in reality the AUR itself tells you to always review PKGBUILDs and to not blindly trust AUR packages.
As is “pip install” by the way.