Comment by dominiwe

In reaction to recent AUR supply chain attacks, I am working on two small tools to try to help address the issue for myself.

First, `aurgate`, a small AUR helper which is more barebones than alternatives but provides a "full diff" workflow. The idea is to make upgrades feel like a "full diff review" and also support graphical tools like meld or the vs code diff viewer.

Second, `flatgate`. This tool is inspired by LittleSnitch and Flatseal. Here the idea is to "default deny" all permissions of newly installed flatpaks and allow/whitelist per invocation (where possible) or on first use.