Package Details: librewolf-bin 1:151.0.4_1-1

Git Clone URL: https://aur.archlinux.org/librewolf-bin.git (read-only, click to copy)
Package Base: librewolf-bin
Description: Community-maintained fork of Firefox, focused on privacy, security and freedom.
Upstream URL: https://librewolf.net/
Keywords: browser web
Licenses: MPL-2.0
Conflicts: librewolf
Provides: librewolf
Submitter: lsf
Maintainer: lsf
Last Packager: lsf
Votes: 635
Popularity: 21.82
First Submitted: 2019-06-16 13:12 (UTC)
Last Updated: 2026-06-10 22:07 (UTC)

Required by (39)

Sources (7)

Pinned Comments

lsf commented on 2021-11-10 12:14 (UTC) (edited on 2026-05-07 09:38 (UTC) by lsf)

https://wiki.archlinux.org/title/Arch_User_Repository#Acquire_a_PGP_public_key_if_needed

gpg --keyserver hkp://keyserver.ubuntu.com --search-keys 031F7104E932F7BD7416E7F6D2845E1305D6E801

/edit: starting with 112.0-1, the binaries are signed with the maintainers shared key, so gpg --keyserver hkp://keyserver.ubuntu.com --search-keys 662E3CDD6FE329002D0CA5BB40339DD82B12EF16 should do the trick instead. I've also signed the key with the previously used key, so you have at least some guarantee that it's not a malicious attack :)

/edit: (2026-05-07): The upstream signing sub-key was rotated, and the .tar.xz tarballs will now be signed with a new subkey. The main key id (0x662E3CDD6FE329002D0CA5BB40339DD82B12EF16) remains unchanged though, so should you get an error during signature verification about a missing (sub)key, all that's required would be to refresh the key(s) via gpg --refresh-keys 662E3CDD6FE329002D0CA5BB40339DD82B12EF16.

Latest Comments

1 2 3 4 5 6 .. 29 Next › Last »

lpc123 commented on 2026-06-13 22:19 (UTC) (edited on 2026-06-13 23:05 (UTC) by lpc123)

Regarding /edit: (2026-05-07), this key did not refresh for me:

gpg --refresh-keys 662E3CDD6FE329002D0CA5BB40339DD82B12EF16

gpg: refreshing 1 key from hkps://keyserver.ubuntu.com

gpg: keyserver refresh failed: Try again later'

The problem is that dirmngr work properly in certain builds due to a known incompatibility between dirmngr's ADNS resolver and systemd-resolved's stub listener. The standard-resolver directive in dirmngr.conf should fix that, but it didn't.

This resolved the issue:

curl -sL "https://keys.openpgp.org/vks/v1/by-fingerprint/662E3CDD6FE329002D0CA5BB40339DD82B12EF16" -o /tmp/lw.pgp

file /tmp/lw.pgp

gpg --import /tmp/lw.pgp

/tmp/lw.pgp: PGP public key block

sunwukonga commented on 2026-05-26 23:01 (UTC) (edited on 2026-05-27 06:38 (UTC) by sunwukonga)

With paru -S librewolf-bin:

==> Making package: librewolf-bin 1:151.0.1_2-1 (Wed 27 May 2026 06:54:41 AM +08)
==> Retrieving sources...
==> ERROR: /home/xxxxx/.cache/paru/clone/librewolf-bin/source is not a clone of https://codeberg.org/librewolf/source.git
    Aborting...
error: failed to download sources for 'librewolf-bin-1:151.0.1_2-1':
error: packages failed to build: librewolf-bin-1:151.0.1_2-1

With git clone ... && makepkg -s:

Cloning into bare repository '/home/xxxxx/aur/librewolf-bin/source'...
fatal: unable to access 'https://codeberg.org/librewolf/source.git/': The requested URL returned error: 504
==> ERROR: Failure while downloading source git repo
    Aborting...

Update: Using HEAD~{1,2,3,4} gives a similar result.

Update: Temporary fix, installed from: https://aur.archlinux.org/packages/librewolf

Y2K350 commented on 2026-05-22 16:55 (UTC) (edited on 2026-05-23 20:24 (UTC) by Y2K350)

New update seems to have broken duckduckgo.com for me. Every time I open the site, the tab just crashes almost immediately.

Tried reinstalling the app with yay -S librewolf-bin and then selecting A for the first option to rebuild, that didn't help. I also tried running in a private tab without extensions with no luck.

I asked gemini to pinpoint where in the crash report shown in the KDE Crash Reporting System the issue occurred, hopefully it's helpful, but I am not well versed in reading crash reports, so if it's useless I apologize. I'm happy to find the right part under instruction.

"Message: Process 13251 (Isolated Web Co) of user 1000 dumped core.

Stack trace of thread 13251:

0 0x00007efd166423f7 n/a (libfontconfig.so.1 + 0x1b3f7)
1 0x00007efd0de6b0e0 n/a (libxul.so + 0x706b0e0)"

EDIT: Latest update resolved the issue.

Ricko commented on 2026-05-13 23:43 (UTC)

To import proper keys after failed update try below steps to be sure what you are importing.
1. check cache for librewolf's PKGBUILD, look inside and find the pubkey in validpgpkeys value
2. make sure of the key's origin with: gpg --search-keys --fingerprint <key_from_PKGBUILD> and whether it matches LibreWolf Maintainers <gpg@librewolf.net>
3. assuming everything's clear, import: gpg --receive-keys <key_from_PKGBUILD>
This should get you 2 new subkeys, and 3 new signatures.

flauta commented on 2026-05-13 19:24 (UTC) (edited on 2026-05-13 19:26 (UTC) by flauta)

Following last comment:

sudo gpg --fetch-keys https://rpm.librewolf.net/pubkey.gpg
gpg: richiesta di chiave da 'https://rpm.librewolf.net/pubkey.gpg'
gpg: chiave 40339DD82B12EF16: "LibreWolf Maintainers <gpg@librewolf.net>" non 
modificata
gpg: Numero totale esaminato: 1
gpg:         non modificate: 1

but after this I still get the same error:

yay librewolf-bin
[...]
==> Validazione delle firme dei sorgenti con gpg in corso...
librewolf-150.0.3-1-linux-x86_64-package.tar.xz ... NON RIUSCITO (chiave 
pubblica sconosciuta 915585A1C36690B1)
==> ERRORE: Una o più firme PGP non possono essere verificate!

unclezz commented on 2026-05-09 09:16 (UTC)

Command from Andykluger is the only one you need to get the bin file installed:

gpg --fetch-keys https://rpm.librewolf.net/pubkey.gpg

gattino commented on 2026-05-08 18:20 (UTC) (edited on 2026-05-08 18:26 (UTC) by gattino)

i got the same error:

==> ERRORE: Una o più firme PGP non possono essere verificate!
 -> errore durante la creazione: librewolf-bin-exit status 1
 -> Installazione dei seguenti pacchetti non riuscita. È richiesto l'intervento manuale:
librewolf-bin - exit status 1

I tried the suggested command but 

gpg --fetch-keys https://rpm.librewolf.net/pubkey.gpg

it didn't work, this is the answer:

can't connect to 'socket:///home/gattino/.gnupg/log-socket': Connessione rifiutata

andykluger commented on 2026-05-08 15:17 (UTC) 

gpg --fetch-keys https://rpm.librewolf.net/pubkey.gpg

should help!

Derson5 commented on 2026-05-08 13:52 (UTC)

Yup, I got the same error:

==> Verifying source file signatures with gpg...
    librewolf-150.0.2-1-linux-x86_64-package.tar.xz ... FAILED (unknown public key 915585A1C36690B1)
==> ERROR: One or more PGP signatures could not be verified!
error: failed to download sources for 'librewolf-bin-1:150.0.2_1-1':
error: packages failed to build: librewolf-bin-1:150.0.2_1-1

1 2 3 4 5 6 .. 29 Next › Last »