RepoRadar
Leave a Tip
Item detail

manticore-projects/aurscan

aurscan is an Apache-2.0 Go scanner that catches malicious AUR packages before makepkg runs a single line, layering deterministic static rules with a Claude/Codex/local-model verdict on the PKGBUILD and helper scripts. It is the first AUR scanner that combines a fail-closed offline mode with an LLM judge for the subtle cases, and it is built by manticore, a long-running Arch security project.

Open source Back to radar
Score7.9
Popularity72.0
Risknone
TierGold
Score breakdown
Usefulness8.0
Novelty8.0
Momentum7.0
Maturity7.7
Open-source/build8.4
Evidence7.2
Workflow potential9.4
Setup ease8.8

Popularity is tracked separately. Support, ads, sponsorships, and tips never affect these signals.

Why it matters

Useful for Arch Linux users and security engineers who want an extra layer between them and a malicious AUR package: install aurscan, run it before makepkg, and let the static rules + LLM judge flag the package before anything executes.

Who should use it

Arch Linux users who install from the AUR regularlysecurity engineers reviewing AUR packages for an orgDevOps teams who want a pre-build malware gate in CIanyone who has been bitten by a malicious AUR package

Who should skip it

Skip if the source link, docs, or setup requirements do not match your workflow.

Risk explanation

No inherent user-impacting risk is flagged from the captured evidence.

Evidence links

Closest alternatives / related signals

archaursecuritymalwarescannergollm-judge