Package Details: pacaudit 1.2.1-1

Git Clone URL: (read-only, click to copy)
Package Base: pacaudit
Description: This package audits installed packages against known vulnerabilities.
Upstream URL:
Keywords: security
Licenses: GPL3
Submitter: ampoffcom
Maintainer: ampoffcom
Last Packager: ampoffcom
Votes: 13
Popularity: 0.26
First Submitted: 2017-02-17 19:13
Last Updated: 2020-06-25 21:18

Latest Comments

1 2 Next › Last »

ampoffcom commented on 2020-06-26 07:45

Version 1.2.1 released.

This release supports offline vulnerability checks. See the man page for more info.

ampoffcom commented on 2020-02-22 10:43

Version 1.1.2 released.

This release checks if is up (ReturnCode 200). If not a warning is shown and pacaudit returns without checks.

ampoffcom commented on 2020-01-24 23:03

Version 1.1.1 released.

This is a release that introduces a preInstall pacman hook. pacaudit warns you if you install a package listed as vulnerable.

ampoffcom commented on 2019-10-24 19:52

Version 1.1.0 published

ampoffcom commented on 2019-05-02 18:52

I just published version 1.0.0

ampoffcom commented on 2019-01-16 08:00

Hi @lostshiner. This is already an enhancement request on github ( I don't like the idea of blocking as long pacaudit is just in the AUR. Maybe as a hook and print a warning when pacman is trying to install a package that is vulnerable. I will work on this idea asap.

Lostshiner commented on 2019-01-15 14:17

Is it possible to block the installation of a package if it is vulnerable using pacaudit?

ampoffcom commented on 2018-12-25 22:30

Updated the PKGBUILD of pacaudit to follow the AUR Go guidelines and added the PIE buildmode

ampoffcom commented on 2017-05-21 22:30

Hi @puffybsd, please import my public key and try again:

gpg --recv-keys 7328F6E376924E4EE266381D3D9C808E038A615C


puffybsd commented on 2017-05-21 22:06

I'm getting an unknown public key error on install:

==> Validating source files with sha256sums...
v0.4.0.tar.gz ... Passed
v0.4.0.tar.gz.asc ... Passed
==> Verifying source file signatures with gpg...
v0.4.0.tar.gz ... FAILED (unknown public key E7AC1413202ECDA2)
==> ERROR: One or more PGP signatures could not be verified!
:: failed to verify pacaudit integrity