I do not know if we have anything like this already but if not: How about we put some anti malware checking on our repositories? So when someone adds or changes a package an automatic anti malware check is done.
It might prevent what happened to Gentoo a while ago: http://www.zdnet.com/blog/bott/linux-infection-proves-windows-malware-monopoly-is-over-gentoo-ships-backdoor-updated/2206?tag=mantle_skin;content And it sound good if we can say all our packages are checked //Mattias
