You are not logged in.
As AUR is potentialy dangerous in flavor of viruses it would be nice if sources are scanned as a preparing step of makepkg.
Any ideas how to implement such a feature?
Offline
Search for "on-access file scanning" with your favourite virus scanner. Most should support it (e.g. ClamAV or Sophos). They will scan your files when you access them.
Offline
i dont want to run a on access scanner. For security reason it is better to scan files before installing an infected package.
Offline
The AUR is [mostly] just source code with scripts to build it into packages. Read the PKGBUILDs and either read the source too or trust the developers.
If quantum mechanics hasn't profoundly shocked you, you haven't understood it yet.
Niels Bohr
Offline
One option is to write a script which first downloads the sources, then scan the files and finally build the package.
$ makepkg -o
$ antivirus-scan
$ makepkg -ei
Moving to "Creating & Modifying Packages".
Offline