DigiNews

Summary

Phoronix reports that over 1,500 Arch Linux AUR packages contained malware, with Russian spam and offensive messages injected into AUR content. The messages appeared post-install in shell configuration files, and more than 70 packages were affected, including Python and Ruby packages. An AI/LLM detection bot aided in identifying the abuse, highlighting ongoing risks in software repositories and the need for improved package vetting.