new | show | ask | jobs Github

hootz 6 hours ago

Arch is not used in enterprise solutions because of the AUR? Can't you just not use it?

▲

virajk_31 4 hours ago | parent [-]

AUR is choice, rolling release is the reason

▲

this_user 3 hours ago | parent | next [-]

No, it's not. If Debian had a community-maintained repo of additional packages, the same thing could happen there.

The fundamental problem is having something that has very loose oversight and next to no controls. That may have worked in the past, but in the day and age of constant supply chain attacks, it's a major liability.

	▲	NekkoDroid an hour ago \| parent [-]
		GP was talking about why Arch isn't used in enterprise, not what happened in the post.

▲

SahAssar 3 hours ago | parent | prev [-]

Rolling release has nothing to do with this. It could just as well be a PPA in ubuntu or any deb repo for debian or similar.