diff options
| author |  sommerfeld <sommerfeld@sommerfeld.dev> | 2026-05-13 13:43:35 +0100 |
|---|---|---|
| committer | sommerfeld <sommerfeld@sommerfeld.dev> | 2026-05-13 13:43:35 +0100 |
| commit | 22816819ffd5f3adb515dcea991cd1c3af368e36 (patch) | |
| tree | d085a50bb25980f999f5d9007855c25a19818bc8 /etc | |
| parent | dbd769d051f3dce8519f7e67a5efa0a27abfc078 (diff) | |
| download | dotfiles-22816819ffd5f3adb515dcea991cd1c3af368e36.tar.gz dotfiles-22816819ffd5f3adb515dcea991cd1c3af368e36.tar.bz2 dotfiles-22816819ffd5f3adb515dcea991cd1c3af368e36.zip | |
feat(meta): add arch-audit, kernel-modules-hook, lostfiles to base
Three small extra-repo packages, each anchoring one strand of the new
'remind, never auto-fix' system-health story:
- arch-audit: queries security.archlinux.org for CVEs against installed
versions and prints those that already have a fix in the repos. Driven
by etc/systemd/system/arch-audit.timer (daily refresh into
/run/arch-audit.txt) and surfaced through custom/arch-audit in waybar.
- lostfiles: enumerates filesystem entries under tracked dirs (/etc,
/usr, /var…) that aren't owned by any pacman package and aren't on
its built-in safe-list. Driven by etc/systemd/system/lostfiles.timer
(weekly refresh into /run/lostfiles.txt) and surfaced through
custom/lostfiles in waybar.
- kernel-modules-hook: ships its own /usr/share/libalpm/hooks entries
that copy the running kernel's modules to /usr/lib/modules/$(uname -r)
on upgrade and prune them on shutdown, so modprobe (USB devices, vfat
mounts, etc.) keeps working between a kernel upgrade and the next
reboot. No further config — drop-in fix.
Diffstat (limited to 'etc')
0 files changed, 0 insertions, 0 deletions