{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreiarm6nfwpyjfdscmayzitk7ngd4pzrmhmk5xhtrb2gfvlyqvru2xa",
    "uri": "at://did:plc:haakkg7y3xdghcdmprxeexso/app.bsky.feed.post/3mo52dqaudhr2"
  },
  "path": "/t/around-1-500-aur-packages-compromised-with-rootkit-like-malware/38517#post_2",
  "publishedAt": "2026-06-12T23:36:29.000Z",
  "site": "https://discuss.privacyguides.net",
  "tags": [
    "https://socket.dev/npm/package/atomic-lockfile"
  ],
  "textContent": "Thankfully I was not hit by that, it seems like as with the other supply chain attacks maybe only around 100 people were affected if I’m understanding this right (https://socket.dev/npm/package/atomic-lockfile)\n\nI don’t have NPM installed locally due to this risk but worry sometimes that other packages would pull it in somehow.\n\nSay I was one of those affected and was running opensnitch - would I see something like a popup saying npm install atomic-lockfile ?",
  "title": "Around 1,500 AUR Packages Compromised with \"Rootkit-Like\" Malware"
}