{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreictf35glc3uitrkmutvn4bxiob7cvljqmwoumtzjdvjvzrwwnjd6q",
    "uri": "at://did:plc:q2k4ilmlzzrnoog5dccpqwor/app.bsky.feed.post/3moaqr5txphi2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreiagfdgzui2wtf7gud45dfjjp4yjeg2gpvcfxtoy36ealct46f5ola"
    },
    "mimeType": "image/png",
    "size": 184232
  },
  "path": "/post/48723301",
  "publishedAt": "2026-06-14T09:02:27.000Z",
  "site": "https://lemmy.ml",
  "tags": [
    "Linux",
    "TheIPW",
    "4 comments",
    "https://the.unknown-universe.co.uk/privacy-security/atomic-arch-audit-tool/"
  ],
  "textContent": "submitted by TheIPW to linux\n24 points | 4 comments\nhttps://the.unknown-universe.co.uk/privacy-security/atomic-arch-audit-tool/\n\nThe “**Atomic Arch** ” campaign compromised over 1,500 AUR packages between June 10-12, targeting SSH keys and API tokens. If you updated via yay or paru during that window, you need to audit your local system.\n\nI’ve built a client-side tool to help with this.\n\n**Local Processing: Your package list never leaves your browser. All comparisons are done client-side.**\n\nLive Data: It fetches the verified malicious list directly from the official Arch servers (md.archlinux.org) to ensure it’s always current. Zero Bloat: No trackers, no ads, no cookies. How to use:\n\n  1. Run _pacman -Qm_\n  2. Paste the output into the tool\n\n",
  "title": "[Tool] Privacy-focused AUR Malware Audit Tool (Atomic Arch Incident)"
}