Arch Linux Now Believes Malware Incident Under Control: More Than 1,500 Affected Packages
Summary
Phoronix reports a significant Arch Linux AUR security incident where malware infected thousands of user-contributed packages. The count rose from 400 to about 1,579 affected packages, and Arch Linux developers indicated malicious commits were deleted as part of the remediation. The piece underscores supply-chain risk in open-source package ecosystems and the importance of rapid incident response.