Scoopta

That is pretty much what it does except it doesn't hardcode \n but instead uses the proper line ending for the platform it's running on.

But it's still not a guarantee

Or just the usernames

The hand on the kids head is more terrifying than comforting, WTF

Acts like SVN and CVS didn't exist

Huh, that is really bizarre then, reminds me of the times where I'll be chatting in discord about something and then get something related recommended in YT right after even though I can't fathom how that would happen as the 2 aren't connected in any way.

My assumption has always been that Google pays Mozilla for 2 things.

1. to have them use Google as the default search engine, with this Mozilla doesn't even have to send them your data because you as the user are effectively giving it straight to Google
2. to keep Mozilla afloat so the US DOJ doesn't claim they're a monopoly because Firefox exists. Ofc that's now happened anyway so we'll see what happens.

I don't believe Mozilla ever sold user information to Google but I of course could be wrong about that. I don't have a definitive answer.

When you searched using Firefox what search engine did you use?

I'm not sure that would've made a difference. It already makes you go out of your way to force a broken package. This has been discussed in places before but the simple fact of the matter is a user that doesn't understand what they're doing will perservere. Putting up barriers is a good thing to do to protect users, spending all your time and effort to cover every edge case is a waste of time because users will find ways to shoot themselves in the foot.

I also feel incredibly uncomfortable with this. Ultimately it comes down to if you trust the application or not. If you do then this isn't really a problem as regardless they're getting code execution on your machine. If you don't, well then don't install the application. In general I don't like installing applications that aren't from my distro's official repositories but mostly because I like knowing at least they trust it and think it's safe, as opposed to any software that isn't which is more of an unknown.

Also it's unlikely for the script to be malicious if the application is not. Further, I'm not sure a manual install really protects anyone from anything. Inexperienced users will go through great lengths and jump through some impressive hoops to try and make something work, to their own detriment sometimes. My favorite example of this is the LTT Linux challenge. apt did EVERYTHING it could think to do to alert that the steam package was broken and he probably didn't want to install it, and instead of reading the error he just blindly typed out the confirmation statement. Nothing will save a user from ruining their system if they're bound and determined to do something.

Fair, should've just said shell

...this is so much more cursed than it needs to be. If you want to bash in C just system("echo hello world");