I’m totally new to Manjaro. I installed manjaro, and then aur google chrome and then deleted it and reinstalled manjaro.
However, I did sign in to my google account.
I would reckon that if it was malicious, it would then have all of my passwords for everything i have ever saved to google-chrome. Is that correct?
How likely is malicious code on aur GoogleChrome?
I’m on firefox now and getting used to it…
I could kick myself.
If it was that particular one, that must be one of the, if not the most downloaded and used packaged in the whole AUR.
So if you are in trouble, tens of thousand around the globe also are. And someone would had noticed it by now already. What I mean, it’s that you are probably fine.
All right then, that’s a good practice anyway, but there is no need, really.
If you check the PKGBUILD as @bill_t says, you would notice that all that that thing is doing, it’s downloading the OFFICIAL .deb build for Debian/Ubuntu, from the OFFICIAL Google servers, and just extracting it in a way that works on an Arch structure. That’s it, that’s all. If you trust Google, and that’s another whole matter, you can trust this.
Maybe it is good to get off of google-chrome anyway. Thanks for the reassurance. It will take some time to fix my passwords… which I’m due for and many are reused. However, I’m a monk with no money. so they are not getting much.
Because chrome is cancerous google spyware. Chromium is however available in the official repos (if under duress)
Your best bet for password security is to use a trusted password manager, if you are looking for cloud storage bitwarden is probably the best you could do.
Firefox browser is safe, secure and in the official repos.
As Signalrunner says that bill says, if you check the script you’ll know exactly what you’re getting in for. You’re not in any danger regardless.
Licensing issues. Google probably doesn’t allow modification of the package and distribution at the same time. And Chrome it’s closed source, which isn’t view as that great of a thing in GNU/Linux world.
And again, there exist a free, open source alternative in Chromium, so it is good that things are this way probably.
They are not. The license (3 clause BSD mostly) allows usage in proprietary and closed source software.
The BSD License allows proprietary use and allows the software released under the license to be incorporated into proprietary products. Works based on the material may be released under a proprietary license as closed source software, allowing usual commercial usages under them.