TwilightKiddy

それもあるけど、最初の方が好きです。

クーラー君！

I must ask you to read the community description, especially if you never read it before.

Because one thing "AI" is good at is faking it's human. Now we have a machine that's good at faking humanity and thus actual humans have to jump through even more hoops to prove they are not "AI". Too bad "AI" is not useful anywhere else.

Not sure, I read all the diffs when I was using Arch. It's scary otherwise. I also put effort into minimizing the number of AUR packages I use, though.

But it getting more popular, of course, also plays a role, but I'd argue it's the same thing. There are only so many nerds out there, for it to get more popular it has to reach to a broader audience.

It's an easy way to get packages distributed across Arch. It's especially useful for new software because getting approved for mainline Arch repos is a pain.

The issue is the fact that it was created before widespread adoption of Arch and thus security is a bit lackluster.

When you use it, the first thing you'll see is "read all the PKGBUILDs before installing!!!" written all over the place, PKGBUILD being the bash script that gets the package into your system. And when Arch was that scary and unapprochable distro used by the nerdiest of nerds, everybody did exactly that and it wasn't an issue.

Nowadays a lot of people who are a bit less than consious about their decisions hop on Arch and use stuff like AUR without thinking what exactly they are doing. The results are all over the news outlets.

Maybe it'll lead to AUR creating stricter policies for maintainers, sad, but I doubt it can exist in it's current state otherwise.

Looking at how it's worded, it's just some high school kid who wanted to have some fun.

What's the point? Most of it probably switches over 10 hands through all the cash registers in shops or exchanges between people directly before it ends up in the ATM again.

Are there any cases of it being somehow useful?

A bit of an off topic thing to ask, but as long as it's not a crime to buy it, why do you care if it's anonymous or not? It's like withdrawing cash in a bank. Yes, the bank may know that you withdrew cash, but what happens with that cash and where you spent it is entirely up to you and it's very hard to track it.

Never buy and spend with the same address and it should be private enough just by design.

Berrirism.

Convincing people to use it is also hard.

When I'm looking for a package that's not in the official repos, I add only either popular repos with active maintainers who do regular updates or ones from packagers I know personally.

First one is hard to fake for obvious reasons. I guess someone could try to know me personally and somehow engineer a situation where I would want to have a piece of software that they package, but that's arguably even harder to pull off and is certainly not worth it for stealing one nerd's worth of money.

If the gun is treated like the hazard it is, I doubt it'd be the sole reason for such behaviour. Maybe he is just using it as an excuse when there are other issues he is not bringing up? But yeah, I can't possibly know all the intricacies of your family relationships and playing a remote family therapist is not the best thing to do. I hope you can find some common ground one day.

And sorry for throwing you into a "stereotypical American" bucket like that, it's a bit too easy to find such people nowadays.