[aur-general] Maintenance issues with metasploit-git package
483ken at gmail.com
Thu Aug 21 12:00:38 EDT 2014
I'd like to bring the community's attention to the following package:
https://aur.archlinux.org/packages/metasploit-git/
It has multiple issues and does not follow pkgbuild guidelines and
best practices:
1. The build script appends instructions into user-specific and
shell-specific ~/.bash_profile on build time.
2. It dumps everything into /usr/local. This is against the very first
point in https://wiki.archlinux.org/index.php/Arch_packaging_standards#Package_etiquette
3. The post-install script tells the user to ignore a warning about
breakage. It warns about breaking ruby for all other users when the
instruction is run with root permissions. I haven't tested this one
for obvious reasons.
4. The package appends to $PATH which overshadows the binaries of
latest ruby package with those of 1.9 version for the current user
(via same instruction as 1.).
The current maintainer refuses collaboration.
What's the best I can do in a situation like this?
- Babken Vardanyan (axper)
More information about the aur-general
mailing list