jbz1d ago

🦾 AURpocalypse now: a look at the recent AUR attacks // LWN

https://lwn.net/SubscriberLink/1077619/f7b07c5489fdd43a/

#AURpocalypse #aur #arch #cybersecurity #opensource

AURpocalypse now: a look at the recent AUR attacks

The Arch User Repository (AUR) has been subjected to a sustained attack recently. The attacker, [...]

LWN.net
jbz3d ago
#AURpocalypse
Show threadJTIJun 13

@sodiboo @ifin @threatintel

Also, notable mention. unexpected thread: https://github.com/lenucksi/aur-malware-check/issues/5

Are there any plans on some bit more central validation, maybe even with some AI/LLM/... with regular conversion of insights to fixed/deterministic rules as discussed throughout the thread? Something something semgrep/opengrep, yara, flathub manifest style etc pp?
Update: Looping in @archlinux here.
Also, any plans on enforcing this -> https://wiki.archlinux.org/title/DeveloperWiki:Building_in_a_clean_chroot for all the AUR build business?

Also: How does this incident not yet have a creative name? I'm not asking for a #bumsrakete but there's gotta be something 🤣

Edit: https://jguer.space/blog/2026-06-15-yay-v13 delivered. It's the #AURpocalypse 😱 🤣

#llm #flathub #abuseprevention #malwareCheck #yara #opengrep #archLinux #archlinuxaur #aur #AURpocalypse

AURSCAN: Scanning AUR packages using Claude LLM · Issue #5 · lenucksi/aur-malware-check

Please have a look at https://github.com/manticore-projects/aurscan and maybe add.

GitHub