Hijacking Arch Linux Packages by Repo Jacking GitHub Repositories(blog.nietaanraken.nl)
blog.nietaanraken.nl
Hijacking Arch Linux Packages by Repo Jacking GitHub Repositories
https://blog.nietaanraken.nl/posts/aur-packages-github-repo-jacking/
2 コメント
article notes that they "found nine vulnerable packages (in the community repository)"
AUR packages pinned to mutable tags are easiest to hijack.