Hi Velocifyer,
browsh-bin now installs a sketchy NPM packageย despite it previusly not needing NPM. See <https://aur.archlinux.org/cgit/aur.git/commit/? h=browsh-bin>Thanks for the report! I confirm that the commit was malicious. It has been reverted and the user suspended.
Regards Claudia
OpenPGP_0xD11E9FC4F7C9DA3C.asc
Description: OpenPGP public key
OpenPGP_signature.asc
Description: OpenPGP digital signature
