"Attackers have compromised hundreds of orphaned packages in the Arch User Repository (AUR) to distribute malware. The malware, a credential stealer, was injected via npm dependencies. Arch maintainers are actively removing malicious updates and banning accounts."