I think I’d be satisfied with just not allowing people to take over orphaned packages. That seems like a glaring attack vector and closing it would not harm the AUR in any way.
And yea, arch (and its derivatives) probably should not shop with AUR helpers pre installed.
arch doesn’t ship an aur helper pre installed. It’s the derivates leeching the arch aur infrastructure and preinstalling aur helpers suggesting it’s safe to use as is
I think I’d be satisfied with just not allowing people to take over orphaned packages. That seems like a glaring attack vector and closing it would not harm the AUR in any way.
And yea, arch (and its derivatives) probably should not shop with AUR helpers pre installed.
arch doesn’t ship an aur helper pre installed. It’s the derivates leeching the arch aur infrastructure and preinstalling aur helpers suggesting it’s safe to use as is