Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Installing anything from the AUR, it has always been the user's responsibility to check whatever they are installing. Has always been this way, and they have always been abundantly clear about this. It is also the reason why archlinux does not provide an official installer like yaourt or yay, they could've even built support for the AUR into pacman.

The AUR is just as safe as installing through a random shell script from github - that is to say: not safe at all.



Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: