..................
..:::.... ....::...
..:::.. ..:::.
.::^:. .:::.
.:^^: :^^:
.^^^: .. :^^:
:~~^ ..::::. .^^^^^: .^^^.
^~~: .:^~~~~~~~~^ .~~^^^^~~^^^^::.. :^~:
~~~. .:^~~~~~~~~~755!. ~~~~~~~~~~~~~~~~~~~^::^~~^
~!!. :~~!~~~~~~~~~~!77!~~~~~~~~~~~~~~~~~~~~~~~~~~^:
^!!: ^!!!!!!!!!!!!!!!~~~~!!!!!!!!!!!!!~~~~!!!~~:..
.!!! ^!!!!!!!!!!!!!!!!!!.~!!!!!!!!!!!!!!!!!!~:.
.!!! ^!!!!!!!!!!!!!!!!!!.~!!!!!!!!!!!!!!!!!!~:.
.!!! ^!!!!!!!!!!!!!!!!!!.~!!!!!!!!!!!!!!!!!!~:.
^77: :!77!!!777!!!!!!!7??7. :7!!!!!!!!77!!^:.
!77. ~777777777777777?YYJJJ~ :7777777~^.
777 !?77777777!!?77?5PP55YY: .777^.
??? !??????7??J: :7PBBBB5PP7 .7?!^:.
7?J:~???????Y55Y. ?##G~!GGJ !????7~:.
~JJ?J?JJ?J5GGGP5 ^ .BBGGP^ !J?JJJJJ?!^.
.JJJJJJJPB##GPGY G###BP^ ~?~?JJJJJJJ?7~:.
~YJJYP#&&B! ~#^ 5&&&G~ :?J. ^?YJJJJJYYYY?!:.
7YY5&@#! :5 !@@B~ ^5GP5! :?YYJ7~..:!?YYJ7
75YP7 :@B~ ~G#GJYG5 :: .JYY~
!55J. Y~ ~GG7. ^P~ ^Y5Y:
:YP5! ~^. : .755?.
!5P5!. .75PY^
!5PP?: ^JPPY^
^JPGP?^. .~JPG5?:
.^?5GG5J!^.. .:^7JPGP57:
.^7YPPGPP5YYJJJJJY55PGGP5J!^.
..:~!7??JJJ??7!^:.


aimy1
Connect on GitHub
Linux
AUR 大规模恶意软件包事件分析:一次针对 Arch Linux 开发者生态的供应链攻击
--- 前言 2026 年 6 月,Arch Linux 社区爆发了一起近年来影响范围最大的 AUR(Arch User Repository)恶意软件包事件。 从最初发现的数百个恶意软件包,到后续统计的上千个受影响软件包,此次事件已经超出了「单个软件包被投毒」的范畴,而演变为一次典型的开源...
3 min read
Read ArticleSystem Arsenal
Optimized for Arch
High-fidelity toolchain precision-engineered for the rolling release philosophy.