On 2026-06-14 16:05, Nicolas Boichat wrote:
Not really malicious per se, but not appropriate either, picked up by my detection bot: https://aur.archlinux.org/cgit/aur.git/commit/PKGBUILD?h=gtk2%2bextra&id=424199b8cc09ff19fc8043bf0e017d1219c66654 https://aur.archlinux.org/cgit/aur.git/commit/PKGBUILD?h=openspades&id=efbf69ac253a0658488933f5b6d5d2c8ed543441 https://aur.archlinux.org/cgit/aur.git/commit/PKGBUILD?h=pg_vectorize&id=f2c0b5c635fd9417af2b961f44188b7d0de31bb7 https://aur.archlinux.org/cgit/aur.git/commit/PKGBUILD?h=unsf-git&id=6d2cb90d5060973f5a6ce5f29faa1c8ba9e358fdI assume there are more coming, those 4 for now.
Cleaned up all packages from zkhr6 and banned them, thanks! -- tippfehlr
OpenPGP_signature.asc
Description: OpenPGP digital signature
