It’s no arch fuckup. The AUR is not an arch linux redponsibility and has always been “untrusted” - you should always verify what you’re downloading and building.
Problem is that bazzite and cachy are arch-based, but targeted at a group of people that arch doesn’t target. So you have users that just blindly download scripts from the AUR without doing proper verification.
This is more the fault of those distros and AUR helpers than arch.
Yep. There’s no AUR for bazzite since it’s based on fedora immutable, unless I’m mistaken and there’s a way to do so anyway somehow. Still, bazzite and AUR do not go hand in hand AFAIK as it’s meant to be an immutable system.
It’s no arch fuckup. The AUR is not an arch linux redponsibility and has always been “untrusted” - you should always verify what you’re downloading and building.
Problem is that bazzite and cachy are arch-based, but targeted at a group of people that arch doesn’t target. So you have users that just blindly download scripts from the AUR without doing proper verification.
This is more the fault of those distros and AUR helpers than arch.
I thought bazzite was based on an atomic version of fedora?
it is
Yep. There’s no AUR for bazzite since it’s based on fedora immutable, unless I’m mistaken and there’s a way to do so anyway somehow. Still, bazzite and AUR do not go hand in hand AFAIK as it’s meant to be an immutable system.