Linux

14103 readers

184 users here now

A community for everything relating to the GNU/Linux operating system (except the memes!)

Also, check out:

Original icon base courtesy of lewing@isc.tamu.edu and The GIMP

founded 3 years ago

MODERATORS

Ategon@programming.dev

anzo@programming.dev

dwraf_of_ignorance@programming.dev

141

The security situation with the Arch Linux AUR got a lot worse (www.gamingonlinux.com)

submitted 1 week ago by cm0002@europe.pub to c/linux@programming.dev

40 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] HaraldvonBlauzahn@feddit.org 1 points 1 week ago (1 children)

If you e.g. install a CLI tool via cargo, there is at least an implicit tree of trust, with each dependant in a dependency tree doing at least some minimal vetting of dependencies.

But still weaker than Debian packages, for example, while on the other hand the number of dependencies now often goes into the hundreds.

[–] BB_C@programming.dev 2 points 1 week ago

still weaker than Debian

There is a lot of myths that surround what distros actually do, can do, and have the resources to do. We had this discussion in one of the two threads I linked.