pacaudit audits installed packages on Arch Linux against known vulnerabilities listed on https://security.archlinux.org.
Install the AUR package.
Prints all vulnerable packages by name and the sum of all vulnerable packages.
$ pacaudit -v
Prints all vulnerable packages by name, with CVE, severity and the sum of all vulnerable packages.
$ pacaudit -n
Returns "OK" if no vulnerable packages are installed, "WARNING" if no vulnerable package with severity HIGH or higher is installed and CRITICAL else.
Please report bugs, feature requests and stars on GitHub: https://github.com/steffenfritz/pacaudit.