Audit the script locally first before running it? How is that unacceptable?

If you find that too risque or tedious, fine, don't use it. It can still be valuable for those happy to put in the effort.

I think they have a point, you might (and should) evaluate it for each new package you install. But when you do a full system upgrade, are you telling me you'll review every AUR package again?

Most AUR helpers (well, the ones I've used at least, those being yay and pacaur) include the option to show a diff of PKGBUILD (and other provided files) for AUR package upgrades

I wish I had the time, but I don't. Feels shitty, but what are you gonna do.

That's a good instinct and default. But if you do the process consciously, like OP advices, AUR can be more secure and predictable than alternatives as you build locally from first-party sources.

(Same can't be said for COPR or PPAs)

Military-industrial complex manufacturing consent.

Thank you for making it clearer for myself why it irks me when "capitalism" is used this way.

Kids and people who identify as such are overrepresented among gamers. Can't really blame the teens for immaturity.

Why don't you build it then? Technically should be trivial.

Relevant conversations moving off Discord is what's really needed and where I think effort is better spent though.

I can't find the page now but iirc someone had attempted the same idea and got some serious backlash from the communities/servers scanned and eventually shut the project down. I agree, though, that discord really needs to be searchable; at least project pages and the like.

Project pages and the like don't belong on Discord.

An appropriate indexer would obviously distinguish between those and actual semi-private chats (where I assume backlash came from). And would probably get shut down after a while anyway either by being banned for ToS violation or the maintainer quitting because maintaining such project gets grating enough anyway at some point.

Good thing anyone is allowed to make a more user-friendly IRC client so that can be improved on, then. As long as we all follow protocols my choice of client doesnt concern you even as we chat in the same room. IRC does not proscribe any particular UI or UX. .

For vertically integrated propriatery closed Discord it's both forbidden and made difficult. There is one alternative and you take it or leave it. Hopefully the latter. There's a reason clients like ripcord never make it.

wasn't slack initially built on top of IRC? they had at least support for IRC clients, much like google message or however it was called at the time used to support jabber/XMPP clients.

well, there is another alternative, namely the EU laws forcing interoperability. i don't know if they have passed yet, or how likely it is that they will pass, but i seem to remember a recent announcement of one system going to be interoperable with whatsapp.

Big fan! Was like magic at first but now I have a big bunch of Aptfiles to deal with instead... Currently working on solving that with the next-generation tool apt-bundle-bunch, which has a simple declarative format to manage your apt-bundle projects in an Aptbundlefile. It's already great for agents and Im working with Claude on a curl|sh install for the v1.

> Big fan! Was like magic at first but now I have a big bunch of Aptfiles to deal with instead... Currently working on solving that with the next-generation tool apt-bundle-bunch, which has a simple declarative format to manage your apt-bundle projects in an Aptbundlefile. It's already great for agents and Im working with Claude on a curl|sh install for the v1.

Good luck share the progress and let us know how it goes. Is it similar to nix? but from what I can feel, is intending to be simpler?

One key insight is that bundles are really sets of packages and that what we're doing when we bundle things is really just set join operations. Imagine the possibilities if we implement arbitrary set operations. So a bunch is defined as a set of bundles (which can themselves be down to a single package of course) and the declarations in the Aptbundlefile translates under the hood to references and set operations. This is not only declarative, it's also purely functional. Still working on if arbitrary set operations should be accessible by DSL in Aptbundlefile or if that should be left to tools building on top of intermediary API. So yeah, parallels to Nix for sure but it's still apt packages, not building the world from source.

I remember my parents doing online banking authenticating with smart cards. Over 20 years ago. Today the same bank requires an iOS or Play Integrity device (for individuals at least. Their gated business banking are separate services and idk what they offer there).

This is not a question of missing tech.