Here's an easy script to scan for compromised packages:

UI_at_80x24 • today at 10:37 AM • 2 replies • view on HN

https://cscs.pastes.sh/aurvulntest20260611.sh

Not my script. It's easy to read/parse. Never pipe a script directly to bash.

Replies

A quicker alternative:

  comm -1 -2 <(pacman -Qq | sort) <(curl -s https://gist.githubusercontent.com/quantenProjects/3f768dce7331618310f016d975bf8547/raw/beef579f8a8efeed6ccf60788e5b768775550095/packages | sort)

It's never a bad time to learn about comm(1).

sva_ • today at 10:47 AM

It isn't guaranteed that the list is conclusive.

Always check PKGBUILD and sources, AUR is not to be trusted for the most part. I'm actually more surprised that such compromise hasn't happened earlier.

➕ show 2 replies

alt Hacker News

Replies