Package Details: aurman 2.20.1-2

Git Clone URL: https://aur.archlinux.org/aurman.git (read-only, click to copy)
Package Base: aurman
Description: AUR helper with almost pacman syntax
Upstream URL: https://github.com/polygamma/aurman
Licenses: MIT
Submitter: polygamma
Maintainer: polygamma
Last Packager: polygamma
Votes: 200
Popularity: 0.72
First Submitted: 2018-03-20 21:31
Last Updated: 2021-06-19 12:54

Pinned Comments

polygamma commented on 2018-08-21 18:02

aurman development for public use has been stopped. i suggest migrating to yay, i am not interested in any kind of feedback, bug reports, feature requests etc. anymore.

Latest Comments

« First ‹ Previous 1 2 3 4 5 6 7 8 Next › Last »

polygamma commented on 2018-06-17 10:16

@Eschwartz - see: https://aur.archlinux.org/cgit/aur.git/commit/?h=aurman&id=2dc46d3f2ff2

eschwartz commented on 2018-06-17 06:28

Hey, now that pacman 5.1 with support for signed VCS sources should be broadly available and given that you use PGP-signing on the git release tags (as of the latest), could you please add ?signed to the git source and your validpgpkeys fingerprint.

I'd appreciate that for the -git version as well, but I'm not sure how feasible that is since the current HEAD commit is not signed. :/ It would require committing to always ensuring the current HEAD commit is signed.

This would address and exceed the requests mentioned a couple times before in the comments here, about doing checksum verification.

(Quick note to everyone in general: the checksums are meant to ensure download integrity, but git repositories already guarantee this, it's built into the git protocol. Verifying the code authorship is a different issue entirely, which checksums does not address but PGP does...)

Kewl commented on 2018-06-13 19:39

I like the fact this is in python with a readable code, very few dependencies, and actively maintained. good job.

andreyv commented on 2018-06-13 18:39

@polygamma: Thank you for your hard work.

polygamma commented on 2018-06-13 09:32

@Camponotus: https://github.com/falconindy/expac/pull/35

Camponotus commented on 2018-06-13 09:15

Thank you for the great aurman package! Why did you change the expac dependencies from expac to the AUR package expac-git?

Redi commented on 2018-06-13 08:26

Dunno I like aurman. It's fast and simple and I think that polygamma does one hell of a job. Keep it up my man.

fenuks commented on 2018-06-07 21:03

@Alad

Git has indeed many useful options, but it's little value added if they are not needed. I doesn't offer one option, though. Simplicity. With tarballs I get click at source in AUR web interface and I will be prompted with download option. It's more, umm, static. Don't get me wrong, if polygamma prefers to use git, it's fine as it is, it builds fine and stuff, just it's a bit, say, unorthodox way of doing it. And, of course, to allow all those fancy options git must fetch all objects. Not that it makes any practical difference with project of this size, of course. And without signed tags, tarballs give stronger guarantee that source is valid, as in, it hasn't changed since PKGBUILD has been submitted, I insist. :-)

Alad commented on 2018-06-06 12:12

Also regarding the request to use tarballs: unless you're using PGP signatures (due to limitations with signing git tags) there's no benefit at all, and git offers advantages like the ability to use cherry-pick or other useful commands.

Alad commented on 2018-06-06 12:00

I've already removed scores of spam from this page. The next guy who makes personal attacks or feels entitled to support without using the proper channels as kindly requested by the author will get his account suspended indefinitely.

Anyone asking for help using makepkg, e.g. "how do I import PGP keys", will find their comment silently deleted by Eschwartz. This is not the makepkg or general help forums, this is the aurman package page.