A massive supply chain attack targeting the Arch User Repository (AUR) has compromised more than 400 community-maintained packages, with attackers injecting malicious build scripts designed to deploy credential-stealing malware and rootkit-style payloads on affected Linux systems.
Wow, I have 229 AUR packages installed but none of them is on the infected list!
Am I just lucky?
i have a few machines and lots of aur packages and none of mine have a single hit either
Same here. Just checked against the new list with 1937 packages and still don’t have a match.
can i get a link to the list youre using, or where you found it?
I just checked the new list with 1937 infected packages, not a single match. Again, am I just lucky or are all these 1937 packages barely used by people?