On Thu, Aug 21, 2014 at 07:27:30PM +0200, Johannes Löthberg wrote:
> On 21/08, Massimiliano Torromeo wrote:
> >On Thu, Aug 21, 2014 at 6:00 PM, <483...@gmail.com> wrote:
> >That package is really really bad but this point makes it borderline
> >malicious. A package that wants to touch my home dir
I forgot to mention - I am not suggesting myself as the maintainer.
Instead someone with more experience with ruby and maintaining such
broken upstream should take over the maintainance.
- Babken Vardanyan (axper)
On Thu, Aug 21, 2014 at 8:00 PM, <483...@gmail.com> wrote:
> I'd like to bring the
On 21/08, Massimiliano Torromeo wrote:
On Thu, Aug 21, 2014 at 6:00 PM, <483...@gmail.com> wrote:
1. The build script appends instructions into user-specific and
shell-specific ~/.bash_profile on build time.
That package is really really bad but this point makes it borderline
malicious. A
On Thu, Aug 21, 2014 at 6:00 PM, <483...@gmail.com> wrote:
>
> 1. The build script appends instructions into user-specific and
> shell-specific ~/.bash_profile on build time.
>
That package is really really bad but this point makes it borderline
malicious. A package that wants to touch my home d
I'd like to bring the community's attention to the following package:
https://aur.archlinux.org/packages/metasploit-git/
It has multiple issues and does not follow pkgbuild guidelines and
best practices:
1. The build script appends instructions into user-specific and
shell-specific ~/.bash_profil
=== Signoff report for [community-testing] ===
https://www.archlinux.org/packages/signoffs/
There are currently:
* 8 new packages in last 24 hours
* 0 known bad packages
* 0 packages not accepting signoffs
* 0 fully signed off packages
* 8 packages missing signoffs
* 0 packages older than 14 days