rafssunny@lemmy.zip to Technology@lemmy.worldEnglish · 11 days ago400+ Arch Linux AUR Packages Compromised in a Supply Chain Attack Deploying Infostealerscybersecuritynews.comexternal-linkmessage-square142linkfedilinkarrow-up1448arrow-down11
arrow-up1447arrow-down1external-link400+ Arch Linux AUR Packages Compromised in a Supply Chain Attack Deploying Infostealerscybersecuritynews.comrafssunny@lemmy.zip to Technology@lemmy.worldEnglish · 11 days agomessage-square142linkfedilink
minus-squareEldritch@piefed.worldlinkfedilinkEnglisharrow-up7·11 days agoYeah, Python has been a massive vulnerability for a long while. And the AUR has similar issues. This is only getting widespread coverage now. But it’s always been a risk.
minus-squareHaraldvonBlauzahn@feddit.orglinkfedilinkEnglisharrow-up1·11 days agoYes, we need a kind of Debian for Python. Part of the solution could be the Guix package manager. Part could be the commercial offerings, like Anaconda.
Yeah, Python has been a massive vulnerability for a long while. And the AUR has similar issues. This is only getting widespread coverage now. But it’s always been a risk.
Yes, we need a kind of Debian for Python.
Part of the solution could be the Guix package manager. Part could be the commercial offerings, like Anaconda.