Hi Florian, > I've hacked something to check installed packages against the > vulnerability database. this is nice. A suggestion: it should not print packages that are in state "deinstall ok config-files" (at least not by default). Cheers, Stefan