pacman upgrade / libalpm integration
Created by: saildata
Would it be possible, or make sense, to integrate arch-audit with pacman upgrade?
For example, to warn a user of CVE's that affect the software that is about the be installed before it is installed? I was thinking this would be nice at the point after all dependencies have been resolved by pacman and before the final "y" to proceed/install is provided by the user.
This might allow users to choose alternatives and make them aware of potential risks that they can then research further before installing.
I'd be happy to help where possible and wanted to check here in case this has already been considered or is being worked on already.