command
module
Version:
v1.2.1
Opens a new window with list of versions in this module.
Published: Jun 25, 2020
License: GPL-3.0
Opens a new window with license information.
Imports: 13
Opens a new window with list of imports.
Imported by: 0
Opens a new window with list of known importers.
README
¶
pacaudit
pacaudit audits installed packages on Arch Linux against known vulnerabilities listed on https://security.archlinux.org
It ships with a preInstall hook for pacman that warns you if you try to install a vulnerable package.
Installation
trizen -S pacaudit
or
any other AUR helper
Usage
-
pacaudit
prints all vulnerable packages by name and the sum of all vulnerable packages
-
pacaudit -v
prints all vulnerable packages by name, with CVE, severity and the sum of all vulnerable packages
-
pacaudit -n
returns "OK" if no vulnerable packages are installed, "WARNING" if no vulnerable package with severity HIGH or higher is installed and CRITICAL else
-
pacaudit -c
print results colorized. Used with verbose (-v) flag
-
pacaudit -p PKGNAME
check if PKGNAME is listed as vulnerable. Useful for alpk-hooks
-
pacaudit -i /PATH/TO/JSON/FILE
pacaudit uses the provided json file instead of the online list of vulnerable packages. Useful for hosts without web access.
-
pacaudit -d
download json file for offline comparison
-
pacaudit -h
print usage and info
Documentation
¶
pacaudit audits installed packages against known vulnerabilities
listed on security.archlinux.org/vulnerable. Use after pacman -Syu.
Source Files
¶
Click to show internal directories.
Click to hide internal directories.