pacaudit audits installed packages on Arch Linux against known vulnerabilities listed on https://security.archlinux.org.
Prints all vulnerable packages by name and the sum of all vulnerable packages.
$ pacaudit -v
Prints all vulnerable packages by name, with CVE, severity and the sum of all vulnerable packages.
$ pacaudit -n
Returns "OK" if no vulnerable packages are installed, "WARNING" if no vulnerable package with severity HIGH or higher is installed and CRITICAL else.
Please report bugs, feature requests and stars on GitHub: https://github.com/steffenfritz/pacaudit.